UBUNTU-CVE-2026-37555

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2026-37555

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-37555.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2026-37555

Upstream

CVE-2026-37555

Published

2026-04-29T16:16:00Z

Modified

2026-05-20T16:25:37.892068976Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Ubuntu - medium

Summary

[none]

Details

An issue was discovered in libsndfile 1.2.2 IMA ADPCM codec. The AIFF code path (line 241) was fixed with (sfcountt) cast, but the WAV code path (line 235) and close path (line 167) were not. When samplesperblock (int) * blocks (int) exceeds INTMAX, the 32-bit multiplication overflows before being assigned to sf.frames (sfcount_t/int64). With samplesperblock=50000 and blocks=50000, the product 2500000000 overflows to -1794967296. This causes incorrect frame count leading to heap buffer overflow or denial of service. Both values come from the WAV file header and are attacker-controlled. This issue was discovered after an incomplete fix for CVE-2022-33065.

References

Affected packages

Ubuntu:20.04:LTS

libsndfile

Package

Name: libsndfile
Purl: pkg:deb/ubuntu/libsndfile?arch=source&distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.0.28-6

1.0.28-7

1.0.28-7ubuntu0.1

1.0.28-7ubuntu0.2

1.0.28-7ubuntu0.3

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "libsndfile1",
            "binary_version": "1.0.28-7ubuntu0.3"
        },
        {
            "binary_name": "sndfile-programs",
            "binary_version": "1.0.28-7ubuntu0.3"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-37555.json"

Ubuntu:22.04:LTS

libsndfile

Package

Name: libsndfile
Purl: pkg:deb/ubuntu/libsndfile?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.0.31-2

1.0.31-2build1

1.0.31-2ubuntu0.1

1.0.31-2ubuntu0.2

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "libsndfile1",
            "binary_version": "1.0.31-2ubuntu0.2"
        },
        {
            "binary_name": "sndfile-programs",
            "binary_version": "1.0.31-2ubuntu0.2"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-37555.json"

Ubuntu:24.04:LTS

libsndfile

Package

Name: libsndfile
Purl: pkg:deb/ubuntu/libsndfile?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.2.2-1

1.2.2-1ubuntu2

1.2.2-1ubuntu3

1.2.2-1ubuntu4

1.2.2-1ubuntu5

1.2.2-1ubuntu5.24.04.1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "libsndfile1",
            "binary_version": "1.2.2-1ubuntu5.24.04.1"
        },
        {
            "binary_name": "sndfile-programs",
            "binary_version": "1.2.2-1ubuntu5.24.04.1"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-37555.json"

Ubuntu:25.10

libsndfile

Package

Name: libsndfile
Purl: pkg:deb/ubuntu/libsndfile?arch=source&distro=questing

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.2.2-2build1

1.2.2-3

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "libsndfile1",
            "binary_version": "1.2.2-3"
        },
        {
            "binary_name": "sndfile-programs",
            "binary_version": "1.2.2-3"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-37555.json"

Ubuntu:26.04:LTS

libsndfile

Package

Name: libsndfile
Purl: pkg:deb/ubuntu/libsndfile?arch=source&distro=resolute

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.2.2-3

1.2.2-4

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "libsndfile1",
            "binary_version": "1.2.2-4"
        },
        {
            "binary_name": "sndfile-programs",
            "binary_version": "1.2.2-4"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-37555.json"

Ubuntu:Pro:14.04:LTS

libsndfile

Package

Name: libsndfile
Purl: pkg:deb/ubuntu/libsndfile?arch=source&distro=esm-infra-legacy%2Ftrusty

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.0.25-7ubuntu1

1.0.25-7ubuntu2

1.0.25-7ubuntu2.1

1.0.25-7ubuntu2.2

1.0.25-7ubuntu2.2+esm1

1.0.25-7ubuntu2.2+esm2

1.0.25-7ubuntu2.2+esm3

1.0.25-7ubuntu2.2+esm4

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "libsndfile1",
            "binary_version": "1.0.25-7ubuntu2.2+esm4"
        },
        {
            "binary_name": "sndfile-programs",
            "binary_version": "1.0.25-7ubuntu2.2+esm4"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-37555.json"

Ubuntu:Pro:16.04:LTS

libsndfile

Package

Name: libsndfile
Purl: pkg:deb/ubuntu/libsndfile?arch=source&distro=esm-infra%2Fxenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.0.25-9.1

1.0.25-10

1.0.25-10ubuntu0.16.04.1

1.0.25-10ubuntu0.16.04.2

1.0.25-10ubuntu0.16.04.3

1.0.25-10ubuntu0.16.04.3+esm1

1.0.25-10ubuntu0.16.04.3+esm2

1.0.25-10ubuntu0.16.04.3+esm3

1.0.25-10ubuntu0.16.04.3+esm4

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "libsndfile1",
            "binary_version": "1.0.25-10ubuntu0.16.04.3+esm4"
        },
        {
            "binary_name": "sndfile-programs",
            "binary_version": "1.0.25-10ubuntu0.16.04.3+esm4"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-37555.json"

Ubuntu:Pro:18.04:LTS

libsndfile

Package

Name: libsndfile
Purl: pkg:deb/ubuntu/libsndfile?arch=source&distro=esm-infra%2Fbionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.0.28-4

1.0.28-4ubuntu0.18.04.1

1.0.28-4ubuntu0.18.04.2

1.0.28-4ubuntu0.18.04.2+esm1

1.0.28-4ubuntu0.18.04.2+esm2

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "libsndfile1",
            "binary_version": "1.0.28-4ubuntu0.18.04.2+esm2"
        },
        {
            "binary_name": "sndfile-programs",
            "binary_version": "1.0.28-4ubuntu0.18.04.2+esm2"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-37555.json"