fluidsynth is a software synthesizer based on the SoundFont 2 specifications. A use after free violation was discovered in fluidsynth, that can be triggered when loading an invalid SoundFont file.
External References: https://github.com/FluidSynth/fluidsynth/issues/808 https://github.com/FluidSynth/fluidsynth/security/advisories/GHSA-6fcq-pxhc-jxc9
Created fluidsynth tracking bugs for this issue: Affects: epel-all [bug 1955613] Affects: fedora-all [bug 1955612]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.