CVE-2021-4156 – libsndfile: heap out-of-bounds read in src/flac.c in flac_buffer_copy

https://notcve.org/view.php?id=CVE-2021-4156

23 Mar 2022 — An out-of-bounds read flaw was found in libsndfile's FLAC codec functionality. An attacker who is able to submit a specially crafted file (via tricking a user to open or otherwise) to an application linked with libsndfile and using the FLAC codec, could trigger an out-of-bounds read that would most likely cause a crash but could potentially leak memory information that could be used in further exploitation of other flaws. Se ha encontrado un fallo de lectura fuera de límites en la funcionalidad del códec FL... • https://bugzilla.redhat.com/show_bug.cgi?id=2027690 • CWE-125: Out-of-bounds Read •