VDB
GCVE-VVD-MAGEIA-2017-168
GCVE-VVD-MAGEIA-2017-168
Advisory Published
A stack-based buffer overflow via a specially crafted FLAC file due to
an error in the header_read() function (CVE-2017-7586).
Several stack-based buffer overflows via a specially crafted FLAC file
due to an error in the flac_buffer_copy() function (CVE-2017-7585,
CVE-2017-7741, CVE-2017-7742).
Global buffer overflow in flac_buffer_copy() (CVE-2017-8361).
Invalid memory read in flac_buffer_copy() (CVE-2017-8362).
Heap-based buffer overflow in flac_buffer_copy() (CVE-2017-8363).
The i2les_array function in pcm.c in libsndfile 1.0.28 allows remote
attackers to cause a denial of service (buffer over-read and
application crash) via a crafted audio file (CVE-2017-8365).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | libsndfile | 0 (affected), 1.0.25-9.2.mga5 (unaffected) | — |
Aliases
CVE-2017-7585CVE-2017-7586CVE-2017-8363CVE-2017-7741CVE-2017-8361CVE-2017-8362CVE-2017-7742CVE-2017-8365
Transitive aliases
EUVD-2017-17320GHSA-4pfq-9qw7-52fwVVD-GENTOO-2017-618016GSD-2017-7742CNVD-2017-06061GHSA-w427-j9xg-4f6gCNVD-2017-05960EUVD-2017-17324GHSA-p53r-qcgq-cr5qGHSA-5jpx-m5hp-3gpvEUVD-2017-17322GHSA-c3h5-xmq3-3g76GSD-2017-7741GHSA-c7cj-cr7h-cj3mEUVD-2017-17321CNVD-2017-05241EUVD-2017-16717GSD-2017-7586GHSA-crm5-67wc-vr9hEUVD-2017-16590EUVD-2017-16716EUVD-2017-16591GHSA-2933-mrxr-9gj9
Browse GCVE Records
100 records in the GCVE database · Updated April 16, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.