CNNVD-202508-2617 Information

CNNVD ID

CNNVD-202508-2617

Related CVE

CVE-2025-52194

• CNNVD Published: 2025-08-21

Description (Chinese)

libsndfile是libsndfile开源的一款用于读取和写入包含采样音频数据的声音文件的AC库。 libsndfile 1.2.2及之前版本存在安全漏洞，该漏洞源于处理畸形IRCAM音频文件时存在缓冲区溢出，可能导致内存损坏和代码执行。

Description (English)

libsndfile is an AC library for reading and writing sound files containing sample audio data from libsndfile open source. There is a security gap in libsndfile 1.2.2 and earlier versions, which stems from the presence of a buffer zone spill while handling an abnormal IRCAM audio file, which could lead to memory damage and code enforcement.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

libsndfile

Published

2025-08-21

Last Modified

2026-02-24

References

https://github.com/libsndfile/libsndfile/issues/1082 https://bushido-sec.com/index.php/2025/08/08/libsndfile-buffer-overflow/ https://nvd.nist.gov/vuln/detail/CVE-2025-52194