Back to bug 1440758
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Adam Mariš | 2017-04-10 12:34:46 UTC | Fixed In Version | libsndfile 1.0.28 | |
| Adam Mariš | 2017-04-10 12:37:45 UTC | Depends On | 1440760 | |
| Adam Mariš | 2017-04-10 12:39:27 UTC | Blocks | 1440764 | |
| Dhiru Kholia | 2017-04-11 08:01:28 UTC | Whiteboard | impact=moderate,public=20170326,reported=20170407,source=cve,cvss3=7.8/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H,cwe=CWE-121,rhel-6/libsndfile=new,rhel-7/libsndfile=new,fedora-all/libsndfile=affected | impact=moderate,public=20170326,reported=20170407,source=cve,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L,cwe=CWE-121,rhel-6/libsndfile=notaffected,rhel-7/libsndfile=wontfix,fedora-all/libsndfile=affected |
| Dhiru Kholia | 2017-04-11 08:12:17 UTC | Priority | medium | low |
| Whiteboard | impact=moderate,public=20170326,reported=20170407,source=cve,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L,cwe=CWE-121,rhel-6/libsndfile=notaffected,rhel-7/libsndfile=wontfix,fedora-all/libsndfile=affected | impact=low,public=20170326,reported=20170407,source=cve,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L,cwe=CWE-121,rhel-6/libsndfile=notaffected,rhel-7/libsndfile=wontfix,fedora-all/libsndfile=affected | ||
| Severity | medium | low | ||
| Dhiru Kholia | 2017-04-11 08:18:40 UTC | Doc Text | A stack overflow flaw was found in the way libsndfile handled ID3 tags. This flaw could potentially be used to crash the application using libsndfile by tricking the application into processing specially crafted FLAC files. | |
| Dhiru Kholia | 2017-04-11 08:39:10 UTC | CC | dkholia | |
| Dhiru Kholia | 2017-04-11 08:41:36 UTC | Doc Text | A stack overflow flaw was found in the way libsndfile handled ID3 tags. This flaw could potentially be used to crash the application using libsndfile by tricking the application into processing specially crafted FLAC files. | A buffer overflow flaw was found in the way libsndfile handled ID3 tags. This flaw could potentially be used to crash the application using libsndfile by tricking the application into processing specially crafted FLAC files. |
| Dhiru Kholia | 2017-04-11 10:30:04 UTC | Status | NEW | CLOSED |
| Resolution | --- | WONTFIX | ||
| Last Closed | 2017-04-11 06:30:04 UTC | |||
| Slawomir Czarko | 2017-04-11 17:01:49 UTC | CC | slawomir | |
| Product Security DevOps Team | 2019-09-29 14:09:48 UTC | Whiteboard | impact=low,public=20170326,reported=20170407,source=cve,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L,cwe=CWE-121,rhel-6/libsndfile=notaffected,rhel-7/libsndfile=wontfix,fedora-all/libsndfile=affected |
Back to bug 1440758