CVE-2021-21417

Summary

fluidsynth is a software synthesizer based on the SoundFont 2 specifications. A use after free violation was discovered in fluidsynth, that can be triggered when loading an invalid SoundFont file.

Affected Software

VendorProductVersion RangeStatus
FluidSynthfluidsynth< 2.1.8affected

Weaknesses

  • CWE-416: {"CWE-416":"Use After Free"}

ADP Enrichment

CVE Program Container

Additional References

References