CVE-2024-50613

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: libsndfile versions 1.2.2 and earlier

Description: The issue is related to a reachable assertion in the mpeg l3 encode.c file, specifically in the mpeg l3 encoder close function, which may lead to application exit.

Recommendations: For libsndfile versions 1.2.2 and earlier, consider disabling the mpeg l3 encoder close function as a temporary workaround until a patch is available.

Exploit

Fix

Assertion Failure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-617

Related Identifiers

AZL-51909

AZL-51977

CVE-2024-50613

ECHO-1BEF-FC42-52DD

Affected Products

Debian

Libsndfile

CVE-2024-50613

Weakness Enumeration

Related Identifiers

Affected Products

References · 17