CVE-2019-3832
Published
CVSS v3
5.5
MEDIUM
CVSS v2
1.9
LOW
Affected
1
PROJECT
Description
It was discovered the fix for CVE-2018-19758 (libsndfile) was not complete and still allows a read beyond the limits of a buffer in wav_write_header() function in wav.c. A local attacker may use this flaw to make the application crash.
A C library for reading and writing sound files containing sampled audio data.
GitHub