CVE-2024-41147

Name of the Vulnerable Software and Affected Versions Miniaudio version 0.11.21

Description The issue is related to an out-of-bounds write vulnerability in the ma dr flac decode samples lpc functionality. It can be triggered by a specially crafted .flac file, leading to memory corruption. An attacker can exploit this by providing a malicious file.

Recommendations For Miniaudio version 0.11.21, consider avoiding the use of the ma dr flac decode samples lpc functionality until a patch is available. Restrict access to processing .flac files from untrusted sources to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.