Wind River Support Network

HomeDefectsLIN8-7849

Fixed

LIN8-7849 : Security Advisory - libsndfile - CVE-2017-14246

Created: Sep 26, 2017 Updated: Dec 3, 2018

Resolved Date: Sep 13, 2018

Found In Version: 8.0.0.21

Severity: Standard

Applicable for: Wind River Linux 8

Component/s: Userspace

Description

An out of bounds read in the function d2ulaw_array() in ulaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of the NAN and INFINITY floating-point values.

https://nvd.nist.gov/vuln/detail/CVE-2017-14246

Other Downloads

Wind River Linux 8.0.0.28
Wind River Linux 8.0.0.29
Wind River Linux 8.0.0.30
Wind River Linux 8.0.0.31
Wind River Linux 8.0.0.32
Wind River Linux 8.0.0.33
Wind River Linux 8.0.0.34

CVEs

CVE-2017-14246