Main Vulnerability Database SB2022113001

SB2022113001 - Ubuntu update for libsamplerate

Published: November 30, 2022

Security Bulletin ID SB2022113001

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Description

This security bulletin contains information about 1 security vulnerability.

1) Out-of-bounds read (CVE-ID: CVE-2017-7697)

The vulnerability allows a local non-authenticated attacker to perform a denial of service (DoS) attack.

In libsamplerate before 0.1.9, a buffer over-read occurs in the calc_output_single function in src_sinc.c via a crafted audio file.

Install update from vendor's website.