VDB
CVE-2011-2696
CVE-2011-2696
PUBLISHED
CVSS 6.800000190734863 MEDIUM
Integer overflow in libsndfile before 1.0.25 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PARIS Audio Format (PAF) file that triggers a heap-based buffer overflow.
EPSS 8.92% · 92.7th percentile
Risk Scores
CVSS 2.0
6.800000190734863
EPSS Score
8.92%
92.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| mega-nerd | libsndfile | 1.0.22, 0, 0.0.8 |
| n/a | n/a | * |
Exploit Intelligence
- 48644 (circl)
- RHSA-2011:1084 (circl)
- [oss-security] 20110715 Re: Re: CVE Request -- libsndfile -- Integer overflow by processing certain PAF files (circl)
- https://bugs.gentoo.org/show_bug.cgi?id=375125 (circl)
- DSA-2288 (circl)
- FEDORA-2011-9325 (circl)
- https://bugzilla.redhat.com/show_bug.cgi?id=721234 (circl)
- 45351 (circl)
- [oss-security] 20110715 Re: Re: CVE Request -- libsndfile -- Integer overflow by processing certain PAF files (circl)
- [oss-security] 20110714 Re: CVE Request -- libsndfile -- Integer overflow by processing certain PAF files (circl)
…and 14 more exploits
Timeline
- Jul 27, 2011 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 3, 2023 EPSS Score
- Feb 13, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- 48644 vdb
- RHSA-2011:1084 vendor-advisory
- [oss-security] 20110715 Re: Re: CVE Request -- libsndfile -- Integer overflow by processing certain PAF files mailing-list
- https://bugs.gentoo.org/show_bug.cgi?id=375125 url
- DSA-2288 vendor-advisory
- FEDORA-2011-9325 vendor-advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=721234 url
- 45351 third-party-advisory
- [oss-security] 20110715 Re: Re: CVE Request -- libsndfile -- Integer overflow by processing certain PAF files mailing-list
- [oss-security] 20110714 Re: CVE Request -- libsndfile -- Integer overflow by processing certain PAF files mailing-list
- [oss-security] 20110714 Re: CVE Request -- libsndfile -- Integer overflow by processing certain PAF files mailing-list
- http://www.mega-nerd.com/libsndfile/ChangeLog url
- 45125 third-party-advisory
- openSUSE-SU-2011:0855 vendor-advisory
- 45388 third-party-advisory
- [oss-security] 20110718 Re: CVE Request -- libsndfile -- Integer overflow by processing certain PAF files mailing-list
- MDVSA-2011:119 vendor-advisory
- http://www.securelist.com/en/advisories/45125 url
- 45384 third-party-advisory
- [oss-security] 20110714 CVE Request -- libsndfile -- Integer overflow by processing certain PAF files mailing-list
…and 7 more