#VU10867 Heap-based buffer overflow in libsndfile - CVE-2017-12562

Cybersecurity Help s.r.o.

Published: 2018-03-07

Vulnerability identifier: #VU10867

Vulnerability risk: Low

CVSSv4.0: 1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2017-12562

CWE-ID: CWE-122

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
libsndfile
Client/Desktop applications / Multimedia software

Vendor: Erik de Castro Lopo

Description
The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists in the psf_binheader_writef function due to heap-based buffer overflow. A remote attacker can trick the victim into opening a specially crafted input, trigger a heap-based buffer overflow condition and cause the service to crash.

Mitigation
Install update from vendor's website.

Vulnerable software versions

libsndfile: 1.0.28 - 1.0.29pre1

External links
https://github.com/manxorist/libsndfile/commit/b6a9d7e95888ffa77d8c75ce3f03e6c7165587cd

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Ubuntu update for libsndfile

Gentoo update for libsndfile

Denial of service in libsndfile

Fedora 25 update for libsndfile

Fedora 26 update for libsndfile

Heap-based buffer overflow in libsndfile (Alpine package)