CVE-2008-5008
Secret Rabbit Code < 0.1.4 - Buffer Overflow via Crafted Audio File
Title source: llmDescription
Buffer overflow in src/src_sinc.c in Secret Rabbit Code (aka SRC or libsamplerate) before 0.1.4, when "extreme low conversion ratios" are used, allows user-assisted attackers to have an unknown impact via a crafted audio file.
References (6)
Core 6
Core References
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2008/11/03/6
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/46542
Third Party Advisory vendor-advisory
x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200812-05.xml
Various Sources x_refsource_confirm
http://www.mega-nerd.com/SRC/ChangeLog
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/32090
Vendor Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2008:238
Scores
EPSS
0.0168
EPSS Percentile
74.4%
Details
CWE
CWE-119
Status
published
Products (13)
mega-nerd/secret_rabbit_code
0.0.0
mega-nerd/secret_rabbit_code
0.0.2
mega-nerd/secret_rabbit_code
0.0.7
mega-nerd/secret_rabbit_code
0.0.9
mega-nerd/secret_rabbit_code
0.0.11
mega-nerd/secret_rabbit_code
0.0.12
mega-nerd/secret_rabbit_code
0.0.13
mega-nerd/secret_rabbit_code
0.0.14
mega-nerd/secret_rabbit_code
0.0.15
mega-nerd/secret_rabbit_code
0.1.0
... and 3 more
Published
Nov 10, 2008
Tracked Since
Feb 18, 2026