CVE-2021-4156

An out-of-bounds read flaw was found in libsndfile's FLAC codec functionality. An attacker who is able to submit a specially crafted file (via tricking a user to open or otherwise) to an application linked with libsndfile and using the FLAC codec, could trigger an out-of-bounds read that would most likely cause a crash but could potentially leak memory information that could be used in further exploitation of other flaws.

References

Affected packages

Git / gitlab.com/muttmua/mutt

Affected ranges

Type: GIT
Repo: https://gitlab.com/muttmua/mutt
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

a5a835d06c365a0679200da56a06b60c57ec523d

Affected versions

Other

mutt-0-92-10i

mutt-0-92-11i

mutt-0-92-9i

mutt-0-93-unstable

mutt-0-94-10i-rel

mutt-0-94-13-rel

mutt-0-94-14-rel

mutt-0-94-15-rel

mutt-0-94-16i-rel

mutt-0-94-17i-rel

mutt-0-94-18-rel

mutt-0-94-5i-rel

mutt-0-94-6i-rel

mutt-0-94-7i-rel

mutt-0-94-8i-rel

mutt-0-94-9i-p1

mutt-0-94-9i-rel

mutt-0-95-rel

mutt-0-96-1-rel

mutt-0-96-2-slightly-post-release

mutt-0-96-3-rel

mutt-0-96-4-rel

mutt-0-96-5-rel

mutt-0-96-6-rel

mutt-0-96-7-rel

mutt-0-96-8-rel

mutt-0-96-rel

mutt-1-1-1-1-rel

mutt-1-1-1-2-rel

mutt-1-1-1-rel

mutt-1-1-10-rel

mutt-1-1-2-rel

mutt-1-1-3-rel

mutt-1-1-4-rel

mutt-1-1-5-rel

mutt-1-1-6-rel

mutt-1-1-7-rel

mutt-1-1-8-rel

mutt-1-1-9-rel

mutt-1-1-rel

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-4156.json"