CVE-2009-4835

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2009-4835

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2009-4835.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2009-4835

Downstream

DEBIAN-CVE-2009-4835

Published

2010-05-06T12:47:23Z

Modified

2026-04-10T03:41:04.434360Z

Summary

[none]

Details

The (1) htkreadheader, (2) alawinit, (3) ulawinit, (4) pcminit, (5) float32init, and (6) sdsreadheader functions in libsndfile 1.0.20 allow context-dependent attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted audio file.

References

http://secunia.com/advisories/35266
http://www.vupen.com/english/advisories/2009/1446
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=530831
http://www.securityfocus.com/bid/35126

CVE-2009-4835

Affected packages