seclists.org · Apr 30, 2026 02:27 AM UTC

oss-sec: [CVE-2026-37555] libsndfile IMA-ADPCM integer overflow (incomplete fix for CVE-2022-33065)

Summary

Hi, I'm disclosing an integer overflow vulnerability in libsndfile's IMA-ADPCM decoder that leads to heap corruption when processing crafted WAV files. **CVE:**...

Original reporting

AFBytes is a read-only aggregator. Use the original source for full context and complete reporting.

Open original source

oss-sec: [CVE-2026-37555] libsndfile IMA-ADPCM integer overflow (incomplete fix for CVE-2022-33065)

Summary

Original reporting

Related coverage

Google to sell its TPUs to some customers

Microsoft Copilot sees explosive growth: 20 million paid seats, quadrupled large deployments

开源 × AI · 开发者生态社区

How AI-led deflation is dragging Indian IT firms but spurring innovation

Utawarerumono: Past and Present Rediscovered shares new character profiles, battle systems, and more

Psychology says the 60s is the decade in which most women have the rare opportunity to become genuinely classy — because almost every external structure that previously defined them (motherhood, partn