The Biosig Project libbiosig is a software library used for various tasks, including MFER parsing. A stack-based buffer overflow vulnerability exists in this library, allowing an attacker to execute arbitrary code when processing specially crafted MFER files.
You're affected if you use Several stack-based buffer overflow vulnerabilities exists. Specific version info not stated in the advisory. If you don't recognise this software, you're probably not affected.
Upgrade to libbiosig version 3.10.0 or later from The Biosig Project website.
- Immediately apply firewall rules to restrict network access to the libbiosig instance (e.g., using a firewall configuration tool).
- Monitor for suspicious MFER file processing activity.