CVE-2018-19840 (NVD)

2018-12-04

The function WavpackPackInit in pack_utils.c in libwavpack.a in WavPack through 5.1.0 allows attackers to cause a denial-of-service (resource exhaustion caused by an infinite loop) via a crafted wav audio file because WavpackSetConfiguration64 mishandles a sample rate of zero.

WavPack - Tree: 070ef6f138

(? files)

Filter Settings
Files
Navigation
Patch data:

(on by default)


Patched area: