Vulnerability in Mega-nerd Libsndfile

CVE-2009-4835

The (1) htk_read_header, (2) alaw_init, (3) ulaw_init, (4) pcm_init, (5) float32_init, and (6) sds_read_header functions in libsndfile 1.0.20 allow context-dependent attackers to cause a denial of service (divide-by-zero error and applicat…

EPSS: 0.004 (59.2th percentile) — read the EPSS interpretation.

Affected products

Mega-nerd Libsndfile — versions 1.0.20
N/a — versions n/a

Weakness classification (CWE)

CWE-189

References

ADV-2009-1446 (vdb-entry, x_refsource_VUPEN, Vendor Advisory)
35126 (vdb-entry, x_refsource_BID)
35266 (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
cve@mitre.org (x_refsource_CONFIRM)