Jump to content
Sign in to follow this  

Advisories MDVSA-2010:150: libsndfile

Recommended Posts

A vulnerability has been discovered and corrected in libsndfile:


The (1) htk_read_header, (2) alaw_init, (3) ulaw_init, (4) pcm_init,

(5) float32_init, and (6) sds_read_header functions in libsndfile

1.0.20 allow context-dependent attackers to cause a denial of service

(divide-by-zero error and application crash) via a crafted audio file



Packages for 2008.0 and 2009.0 are provided as of the Extended

Maintenance Program. Please visit this link to learn more:



The updated packages have been patched to correct this issue.

Share this post

Link to post
Share on other sites
This topic is now closed to further replies.
Sign in to follow this  

  • Create New...