Libsndfile Project Libsndfile — known CVE vulnerabilities
Every CVE whose affected-product data names Libsndfile Project Libsndfile, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (32)
CVE-2017-12562 — CVSS 9.8 (critical): Heap-based Buffer Overflow in the psf_binheader_writef function in common.c in libsndfile through 1.0.28 allows remote attackers to cause a…
CVE-2017-8361 — CVSS 8.8 (high): The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (buffer overflow and…
CVE-2021-3246 — CVSS 8.8 (high): A heap buffer overflow vulnerability in msadpcm_decode_block of libsndfile 1.0.30 allows attackers to execute arbitrary code via a crafted…
CVE-2017-6892 — CVSS 8.8 (high): In libsndfile version 1.0.28, an error in the "aiff_read_chanmap()" function (aiff.c) can be exploited to cause an out-of-bounds read…
CVE-2018-13139 — CVSS 8.8 (high): A stack-based buffer overflow in psf_memset in common.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service…
CVE-2018-19662 — CVSS 8.1 (high): An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2alaw_array in alaw.c that will lead to a denial…
CVE-2017-14245 — CVSS 8.1 (high): An out of bounds read in the function d2alaw_array() in alaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information…
CVE-2017-14246 — CVSS 8.1 (high): An out of bounds read in the function d2ulaw_array() in ulaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information…
CVE-2022-33064 — CVSS 7.8 (high): An off-by-one error in function wav_read_header in src/wav.c in Libsndfile 1.1.0, results in a write out of bound, which allows an attacker…
CVE-2022-33065 — CVSS 7.8 (high): Multiple signed integers overflow in function au_read_header in src/au.c and in functions mat4_open and mat4_read_header in src/mat4.c in…
CVE-2026-37555 — CVSS 7.5 (high): An issue was discovered in libsndfile 1.2.2 IMA ADPCM codec. The AIFF code path (line 241) was fixed with (sf_count_t) cast, but the WAV…
CVE-2025-52194 — CVSS 7.5 (high): A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio…
CVE-2021-4156 — CVSS 7.1 (high): An out-of-bounds read flaw was found in libsndfile's FLAC codec functionality. An attacker who is able to submit a specially crafted file…
CVE-2017-14634 — CVSS 6.5 (medium): In libsndfile 1.0.28, a divide-by-zero error exists in the function double64_init() in double64.c, which may lead to DoS when playing a…
CVE-2024-50613 — CVSS 6.5 (medium): libsndfile through 1.2.2 has a reachable assertion, that may lead to application exit, in mpeg_l3_encode.c mpeg_l3_encoder_close.
CVE-2017-8362 — CVSS 6.5 (medium): The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (invalid read and…
CVE-2018-13419 — CVSS 6.5 (medium): An issue has been found in libsndfile 1.0.28. There is a memory leak in psf_allocate in common.c, as demonstrated by sndfile-convert. NOTE…
CVE-2018-19432 — CVSS 6.5 (medium): An issue was discovered in libsndfile 1.0.28. There is a NULL pointer dereference in the function sf_write_int in sndfile.c, which will…
CVE-2018-19661 — CVSS 6.5 (medium): An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2ulaw_array in ulaw.c that will lead to a denial…
CVE-2017-8363 — CVSS 6.5 (medium): The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (heap-based buffer…
CVE-2018-19758 — CVSS 6.5 (medium): There is a heap-based buffer over-read at wav.c in wav_write_header in libsndfile 1.0.28 that will cause a denial of service.
CVE-2017-16942 — CVSS 6.5 (medium): In libsndfile 1.0.25 (fixed in 1.0.26), a divide-by-zero error exists in the function wav_w64_read_fmt_chunk() in wav_w64.c, which may lead…
CVE-2017-8365 — CVSS 6.5 (medium): The i2les_array function in pcm.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (buffer over-read and…
CVE-2017-7742 — CVSS 5.5 (medium): In libsndfile before 1.0.28, an error in the "flac_buffer_copy()" function (flac.c) can be exploited to cause a segmentation violation…
CVE-2017-7586 — CVSS 5.5 (medium): In libsndfile before 1.0.28, an error in the "header_read()" function (common.c) when handling ID3 tags can be exploited to cause a…
CVE-2017-7585 — CVSS 5.5 (medium): In libsndfile before 1.0.28, an error in the "flac_buffer_copy()" function (flac.c) can be exploited to cause a stack-based buffer overflow…
CVE-2019-3832 — CVSS 5.5 (medium): It was discovered the fix for CVE-2018-19758 (libsndfile) was not complete and still allows a read beyond the limits of a buffer in…
CVE-2017-7741 — CVSS 5.5 (medium): In libsndfile before 1.0.28, an error in the "flac_buffer_copy()" function (flac.c) can be exploited to cause a segmentation violation…
CVE-2025-56226 — CVSS 5.3 (medium): Libsndfile <=1.2.2 contains a memory leak vulnerability in the mpeg_l3_encoder_init() function within the mpeg_l3_encode.c file.
CVE-2014-9756 — CVSS 5.0 (medium): The psf_fwrite function in file_io.c in libsndfile allows attackers to cause a denial of service (divide-by-zero error and application…
CVE-2014-9496 — CVSS 2.1 (low): The sd2_parse_rsrc_fork function in sd2.c in libsndfile allows attackers to have unspecified impact via vectors related to a (1) map offset…