CVE-2007-4974
EPSS 7.1%libsndfile
Published: 9/19/2007Modified: 4/28/2026
Description
Heap-based buffer overflow in the flac_buffer_copy function in libsndfile 1.0.17 and earlier might allow remote attackers to execute arbitrary code via a FLAC file with crafted PCM data containing a block with a size that exceeds the previous block size.
Affected packages (3)
- Debian/ardourfrom 0, < 1:2.1-1.1
- Debian/libsndfilefrom 0, < 1.0.17-4
- Debian/libsndfilefrom 0, < 1.0.16-2