Login Sign Up

CVE-2021-34184

9.8 CRITICAL
Remote Code Execution Buffer Overflow

📋 TL;DR

CVE-2021-34184 is a double-free vulnerability in Miniaudio's ma_default_vfs_close__stdio function that can lead to buffer overflow and potential remote code execution. This affects applications using Miniaudio library version 0.10.35 for audio processing. Developers integrating Miniaudio into their software are primarily affected.

💻 Affected Systems

Products:
  • Miniaudio library
  • Applications using Miniaudio library
Versions: Version 0.10.35 specifically
Operating Systems: All platforms where Miniaudio is used (Windows, Linux, macOS, etc.)
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects applications using the vulnerable ma_default_vfs_close__stdio function for file operations.

📦 What is this software?

Miniaudio by Mackron

View all CVEs affecting Miniaudio →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution allowing complete system compromise, data theft, or ransomware deployment.

🟠

Likely Case

Application crash leading to denial of service, with potential for memory corruption and limited code execution.

🟢

If Mitigated

Application crash without code execution if ASLR/DEP protections are effective.

🌐 Internet-Facing: HIGH - Applications processing untrusted audio files from external sources are vulnerable to remote exploitation.
🏢 Internal Only: MEDIUM - Internal applications processing audio files could be exploited by authenticated users.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: MEDIUM

Exploitation requires triggering the double-free condition through crafted audio file processing.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Version 0.10.36 and later

Vendor Advisory: https://github.com/mackron/miniaudio/issues/319

Restart Required: Yes

Instructions:

1. Update Miniaudio to version 0.10.36 or later. 2. Recompile applications using the library. 3. Restart affected services.

🔧 Temporary Workarounds

Disable vulnerable file operations

all

Avoid using ma_default_vfs_close__stdio function in code

Input validation

all

Implement strict validation of audio file inputs before processing

🧯 If You Can't Patch

  • Implement strict network segmentation to isolate vulnerable systems
  • Deploy application allowlisting to prevent unauthorized code execution

🔍 How to Verify

Check if Vulnerable:

Check if application uses Miniaudio version 0.10.35 by examining dependencies or build configuration.

Check Version:

Check library version in source code or build configuration files.

Verify Fix Applied:

Verify Miniaudio version is 0.10.36+ and application has been recompiled with updated library.

📡 Detection & Monitoring

Log Indicators:

  • Application crashes with memory corruption errors
  • Unexpected process termination during audio file processing

Network Indicators:

  • Unusual network connections from audio processing services
  • Large volume of audio file uploads to vulnerable endpoints

SIEM Query:

Process termination events from audio processing applications OR memory access violation alerts

📊 Metadata

CVE ID: CVE-2021-34184
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-415
Published: June 25, 2021
Last Updated: August 26, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2021-34184, you might also want to check these:

CVE-2020-35885 9.8

This vulnerability in the alpm-rs Rust crate allows double-free memory corruption due to improper de...

Same vulnerability type (CWE-415)
CVE-2021-29940 9.8

This vulnerability in the Rust 'through' crate allows double-free memory corruption when the map fun...

Same vulnerability type (CWE-415)
CVE-2023-49937 9.8

This CVE describes a double-free vulnerability in SchedMD Slurm workload manager that allows attacke...

Same vulnerability type (CWE-415)