libsndfile CAF Processing Integer Overflow Vulnerability

Secunia ID	SA33980
CVE-ID	CVE-2009-0186
Release Date	03 Mar 2009
Criticality	Highly Critical
Solution Status	Vendor Patch
Software	libsndfile 1.x
Where	From remote
Impact	DoS (Denial of Service) This includes vulnerabilities ranging from excessive resource consumption (e.g. causing a system to use a lot of memory) to crashing an application or an entire system. System access This covers vulnerabilities where malicious people are able to gain system access and execute arbitrary code with the privileges of a local user.
Description	Secunia Research has discovered a vulnerability in libsndfile, which can be exploited by malicious people to compromise an application using the library. The vulnerability is caused due to an integer overflow error in the processing of CAF description chunks. This can be exploited to cause a heap-based buffer overflow by tricking the user into processing a specially crafted CAF audio file. Successful exploitation may allow execution of arbitrary code. The vulnerability is confirmed in version 1.0.18. Prior versions may also be affected.
Solution	Update to version 1.0.19.
Reported by	Alin Rad Pop, Secunia Research
Original Advisory	Secunia Research: http://secunia.com/secunia_research/2009-7/ libsndfile: http://www.mega-nerd.com/libsndfile/ChangeLog