MediaArea MediaInfoLib Channel Splitting Heap-Based Buffer Overflow Vulnerability

A heap-based buffer overflow vulnerability has been identified in the Channel Splitting feature of MediaArea MediaInfoLib version 26.01. This vulnerability allows for arbitrary code execution by exploiting the way the library processes multi-channel audio in RIFF files. When a specially crafted .riff file is parsed, the library can be tricked into overwriting memory, potentially leading to execution of attacker-controlled code.

Impact

Exploitation of this vulnerability can result in a heap-based buffer overflow, allowing for arbitrary code execution.

Reproduction

The vulnerability can be reproduced by using a .riff file that has more than 2 audio channels, a bit depth of 20 bits, and a sampling rate of 48000 Hz. When this file is processed by MediaInfoLib version 26.01, the channel splitting functionality will incorrectly handle the audio data, leading to a heap buffer overflow.

Remediation

Users are advised to update to the patched version of MediaInfoLib, which is available on the project's GitHub page.