Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!


TUCoPS :: Linux :: Apps A-M :: tb12856.htm

libsndfile: Buffer overflow



libsndfile: Buffer overflow
libsndfile: Buffer overflow




--AqsLC8rIMeq19msA
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory                           GLSA 200710-04
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/ 
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

  Severity: Normal
     Title: libsndfile: Buffer overflow
      Date: October 07, 2007
      Bugs: #192834
        ID: 200710-04

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======
A buffer overflow vulnerability has been discovered in libsndfile.

Background
=========
libsndfile is a library for reading and writing various formats of
audio files including WAV and FLAC.

Affected packages
================
    -------------------------------------------------------------------
     Package                /   Vulnerable   /              Unaffected
    -------------------------------------------------------------------
  1  media-libs/libsndfile      < 1.0.17-r1               >= 1.0.17-r1

Description
==========
Robert Buchholz of the Gentoo Security team discovered that the
flac_buffer_copy() function does not correctly handle FLAC streams with
variable block sizes which leads to a heap-based buffer overflow
(CVE-2007-4974).

Impact
=====
A remote attacker could exploit this vulnerability by enticing a user
to open a specially crafted FLAC file or network stream with an
application using libsndfile. This might lead to the execution of
arbitrary code with privileges of the user playing the file.

Workaround
=========
There is no known workaround at this time.

Resolution
=========
All libsndfile users should upgrade to the latest version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=media-libs/libsndfile-1.0.17-r1"

References
=========
  [ 1 ] CVE-2007-4974
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4974 

Availability
===========
This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:

http://security.gentoo.org/glsa/glsa-200710-04.xml 

Concerns?
========
Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users machines is of utmost
importance to us. Any security concerns should be addressed to
security@gentoo.org or alternatively, you may file a bug at 
http://bugs.gentoo.org. 

License
======
Copyright 2007 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).

The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/2.5 

--AqsLC8rIMeq19msA
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)

iQEVAwUBRwk/6TvRww8BFPxFAQKqEwgAkJ08sqTJ79n+CfkP3DUUhilxj6irF9gn
1p/tdihoYGqeYvZ0xuytHGRhh8xifC/aPWxIUYRDAs4nrEDIhe04r/AzqJzOnL7g
PyJf2vrBfA7zBL+q0pu0BwnM1IJZqkrETE/1AGfdGITZlmSuKFesdX3DXGie5KMC
0IARq1cOdEKjLkwzZer2bwihrtaFPGRCC69cCUtcnt/qi7JDaMiMbDXZFQRdTFwa
PcylRTqKnUliAlxYXf5pZPk1cMoxgySDBRy8vKkX0C3KTXKizuzDuNORm42mWudE
m2XX5Qv3CMVU3tctSqHyZ6Kw11/+pdq89n5ybO3HArGxEUivnncNPw==2v56
-----END PGP SIGNATURE-----

--AqsLC8rIMeq19msA--


TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH