Import Source
https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-66669.json
JSON Data
https://api.test.osv.dev/v1/vulns/AZL-66669
Upstream
Published
2025-08-21T15:15:33Z
Modified
2026-04-01T05:21:01.601266Z
Summary
CVE-2025-52194 affecting package libsndfile 1.0.31-4
Details

A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio files. The vulnerability occurs in the ircamreadheader function at src/ircam.c:164 during sample rate processing, leading to memory corruption and potential code execution.

References

Affected packages

Azure Linux:2 / libsndfile

Package

Name
libsndfile
Purl
pkg:rpm/azure-linux/libsndfile

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Last affected
1.0.31-4

Database specific

source
"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-66669.json"