CVE-2018-10536 (NVD)

2018-04-29

An issue was discovered in WavPack 5.1.0 and earlier. The WAV parser component contains a vulnerability that allows writing to memory because ParseRiffHeaderConfig in riff.c does not reject multiple format chunks.

Products Debian_linux, Wavpack
Type Out-of-bounds Write (CWE-787)
First patch https://github.com/dbry/WavPack/commit/26cb47f99d481ad9b93eeff80d26e6b63bbd7e15
Relevant file/s • ./cli/riff.c (modified, +6, -1)
• ./cli/wave64.c (modified, +6)
Links https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CFFFWIWALGQPKINRDW3PRGRD5LOLGZA/
https://usn.ubuntu.com/3637-1/
https://github.com/dbry/WavPack/issues/32
https://github.com/dbry/WavPack/issues/31
https://seclists.org/bugtraq/2019/Dec/37

WavPack - Tree: 26cb47f99d

(? files)

Filter Settings
Files
Navigation
Patch data:

(on by default)

Patched area: