Integer overflow in the main function in util/lpci_main.c in Csound before 5.17.2, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted file, which triggers a heap-based buffer overflow.
{
"binaries": [
{
"binary_name": "csladspa",
"binary_version": "1:6.02~dfsg-1"
},
{
"binary_name": "csound",
"binary_version": "1:6.02~dfsg-1"
},
{
"binary_name": "csound-data",
"binary_version": "1:6.02~dfsg-1"
},
{
"binary_name": "csound-utils",
"binary_version": "1:6.02~dfsg-1"
},
{
"binary_name": "libcsnd-dev",
"binary_version": "1:6.02~dfsg-1"
},
{
"binary_name": "libcsnd6-6.0",
"binary_version": "1:6.02~dfsg-1"
},
{
"binary_name": "libcsnd6-java",
"binary_version": "1:6.02~dfsg-1"
},
{
"binary_name": "libcsound64-6.0",
"binary_version": "1:6.02~dfsg-1"
},
{
"binary_name": "libcsound64-dev",
"binary_version": "1:6.02~dfsg-1"
},
{
"binary_name": "libcsound64-doc",
"binary_version": "1:6.02~dfsg-1"
},
{
"binary_name": "libcsoundac-dev",
"binary_version": "1:6.02~dfsg-1"
},
{
"binary_name": "libcsoundac6.0",
"binary_version": "1:6.02~dfsg-1"
},
{
"binary_name": "liblua5.1-luacsnd",
"binary_version": "1:6.02~dfsg-1"
},
{
"binary_name": "pd-csound",
"binary_version": "1:6.02~dfsg-1"
},
{
"binary_name": "python-csound",
"binary_version": "1:6.02~dfsg-1"
},
{
"binary_name": "python-csoundac",
"binary_version": "1:6.02~dfsg-1"
}
],
"availability": "No subscription required"
}