SB2018120303 - Gentoo update for libsndfile
Published: December 3, 2018 Updated: December 3, 2018
Security Bulletin ID
SB2018120303
Severity
Low
Patch available
YES
Number of vulnerabilities
8
Exploitation vector
Remote access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 8 secuirty vulnerabilities.
1) Heap-based buffer overflow (CVE-ID: CVE-2017-12562)
The vulnerability allows a remote attacker to cause DoS condition on the target system.The weakness exists in the psf_binheader_writef function due to heap-based buffer overflow. A remote attacker can trick the victim into opening a specially crafted input, trigger a heap-based buffer overflow condition and cause the service to crash.
2) Divide by zero (CVE-ID: CVE-2017-14634)
The vulnerability allows a remote attacker to cause DoS condition on the target system.The weakness exists in the double64_init() function due to a divide-by-zero error when processing crafted audio files. A remote attacker can trick the victim into opening a specially crafted audio file, trigger a divide-by-zero condition and cause the service to crash.
3) Out-of-bounds read (CVE-ID: CVE-2017-6892)
The vulnerability allows a remote attacker to obtain potentially sensitive information on the target system.The weakness exists in the aiff_read_chanmap() function, which is defined in the aiff.c source code file due to improper handling of AIFF files. A remote attacker can create a specially crafted AIFF file, trick the victim into opening it, trigger out-of-bounds read and gain access to potentially sensitive information.
4) Buffer overflow (CVE-ID: CVE-2017-8361)
The vulnerability allows a remote attacker to cause DoS condition on the target system.The weakness exists due to buffer overflow in the flac_buffer_copy function in flac.c. A remote attacker can send a specially crafted audio file, trick the victim into opening it, trigger memory corruption and cause the application to crash.
Successful exploitation of the vulnerability results in denial of service.
5) Out-of-bounds read (CVE-ID: CVE-2017-8362)
The vulnerability allows a remote attacker to cause DoS condition on the target system.The weakness exists due to out-of-bounds read in the flac_buffer_copy function in flac.c. A remote attacker can send a specially crafted audio file, trick the victim into opening it and cause the application to crash.
Successful exploitation of the vulnerability results in denial of service.
6) Heap-based buffer overflow (CVE-ID: CVE-2017-8363)
The vulnerability allows a remote attacker to cause DoS condition on the target system.The weakness exists due to heap-based buffer over-read in the flac_buffer_copy function in flac.c in libsndfile. A remote attacker can send a specially crafted audio file, trick the victim into opening it, trigger memory corruption and cause the application to crash.
Successful exploitation of the vulnerability results in denial of service.
7) Buffer over-read (CVE-ID: CVE-2017-8365)
The vulnerability allows a remote attacker to cause DoS condition on the target system.The weakness exists due to buffer over-read in the i2les_array function in pcm.c in libsndfile. A remote attacker can send a specially crafted audio file, trick the victim into opening it and cause the application to crash.
Successful exploitation of the vulnerability results in denial of service.
8) Stack-based buffer overflow (CVE-ID: CVE-2018-13139)
The vulnerability allows a remote unauthenticated attacker to cause DoS condition on the target system.The weakness exists due to stack-based buffer overflow in psf_memset in common.c. A remote attacker can send a specially crafted audio file, trick the victim into opening it, trigger memory corruption and cause the service to crash.
Remediation
Install update from vendor's website.