Vigil@nce - libsndfile: division by zero via psf_fwrite
November 2015 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can generate an arithmetic error in the psf_fwrite()
function of libsndfile, in order to trigger a denial of service.
Impacted products: openSUSE.
Severity: 1/4.
Creation date: 04/11/2015.
DESCRIPTION OF THE VULNERABILITY
The libsndfile library supports audio files in PSF (Portable Sound
Format) format.
However, if the PSF file is malformed, a division by zero occurs
in the psf_fwrite() function.
An attacker can therefore generate an arithmetic error in the
psf_fwrite() function of libsndfile, in order to trigger a denial
of service.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/libsndfile-division-by-zero-via-psf-fwrite-18235