CVE-2017-6892

Summary

In libsndfile version 1.0.28, an error in the "aiff_read_chanmap()" function (aiff.c) can be exploited to cause an out-of-bounds read memory access via a specially crafted AIFF file.

Affected Software

VendorProductVersion RangeStatus
Flexera Software LLClibsndfile1.0.28affected

Weaknesses

  • Out-of-bounds read memory access leading to information disclosure

ADP Enrichment

CVE Program Container

Additional References

References