CVE-2011-2911

描述

Integer overflow in the CSoundFile::ReadWav function in src/load_wav.cpp in libmodplug before 0.8.8.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted WAV file, which triggers a heap-based buffer overflow.

受影響套件(1)

• Debian/libmodplugfrom 0, < 1:0.8.8.4-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-2911