CVE-2024-21812

Name of the Vulnerable Software and Affected Versions The Biosig Project libbiosig version 2.5.0 The Biosig Project libbiosig Master Branch (ab0ee111)

Description An integer overflow vulnerability exists in the sopen FAMOS read functionality. A specially crafted .famos file can lead to an out-of-bounds write, which can result in arbitrary code execution. An attacker can trigger this issue by providing a malicious file.

Recommendations For version 2.5.0, consider disabling the sopen FAMOS read functionality until a patch is available. For Master Branch (ab0ee111), restrict the use of the sopen FAMOS read functionality to minimize the risk of exploitation. As a temporary workaround, avoid using files that could trigger the integer overflow vulnerability in the sopen FAMOS read functionality until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.