Wind River Support Network

HomeDefectsLIN9-5435

Fixed

LIN9-5435 : Security Advisory - libsndfile - CVE-2017-14245

Created: Sep 26, 2017 Updated: Dec 3, 2018

Resolved Date: Sep 19, 2018

Found In Version: 9.0.0.10

Fix Version: 9.0.0.18

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Userspace

Description

An out of bounds read in the function d2alaw_array() in alaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of the NAN and INFINITY floating-point values.

https://nvd.nist.gov/vuln/detail/CVE-2017-14245

Other Downloads

Wind River Linux 9.0.0.18
Wind River Linux 9.0.0.19
Wind River Linux 9.0.0.20
Wind River Linux 9.0.0.21
Wind River Linux 9.0.0.22
Wind River Linux 9.0.0.23
Wind River Linux 9.0.0.24
Wind River Linux 9.0.0.25
Wind River Linux 9.0.0.26

CVEs

CVE-2017-14245