CNNVD-202601-2451 Information

CNNVD ID

CNNVD-202601-2451

Related CVE

CVE-2025-56226

• CNNVD Published: 2026-01-14

Description (Chinese)

libsndfile是libsndfile开源的一款用于读取和写入包含采样音频数据的声音文件的AC库。 Libsndfile 1.2.2及之前版本存在安全漏洞，该漏洞源于mpeg_l3_encoder_init函数存在内存泄漏。

Description (English)

libsndfile is an AC library for reading and writing sound files containing sample audio data from libsndfile open source. There is a security loophole in Libsndfile 1.2.2 and earlier versions, which stems from the memory leak in the mpeg l3 encoder init function.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

libsndfile

Published

2026-01-14

Last Modified

2026-02-24

References

https://gist.github.com/Sisyphus-wang/f9e6e017b7d478bebee6e8187672abc8 https://github.com/libsndfile/libsndfile/issues/1089