CVE-2021-3246

Published: Jul 20, 2021
Updated: Apr 14, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2021-3246" target="_blank" rel="noopener"> CVE-2021-3246
Severity: High
Exploit:

A heap buffer overflow vulnerability in msadpcm_decode_block of libsndfile 1.0.30 allows attackers to execute arbitrary code via a crafted WAV file.

CVSS v3:

CVSS v2:

CWEs:

Software	From	Fixed in
libsndfile_project / libsndfile	1.0.30	1.0.30.x
fedoraproject / fedora	33	33.x
fedoraproject / fedora	34	34.x
debian / debian_linux	9.0	9.0.x
debian / debian_linux	10.0	10.0.x