CVE-2014-9756
EPSS 0.66%
Description
The psf_fwrite function in file_io.c in libsndfile allows attackers to cause a denial of service (divide-by-zero error and application crash) via unspecified vectors related to the headindex variable.
How to fix CVE-2014-9756
To remediate CVE-2014-9756, upgrade the affected package to a fixed version below.
- Debian/libsndfile—upgrade to 1.0.25-10 or later
Is CVE-2014-9756 being exploited?
Low — EPSS is 0.7%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1.0.25-10