CVE-2017-14634
MEDIUMlibsndfile 1.0.28 - DoS
Title source: llmDescription
In libsndfile 1.0.28, a divide-by-zero error exists in the function double64_init() in double64.c, which may lead to DoS when playing a crafted audio file.
References (5)
Scores
CVSS v3
6.5
EPSS
0.0115
EPSS Percentile
78.3%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Classification
CWE
CWE-369
Status
draft
Affected Products (2)
libsndfile_project/libsndfile
debian/debian_linux
Timeline
Published
Sep 21, 2017
Tracked Since
Feb 18, 2026