CVE's linked by rpms - CVE-Search

Max CVSS

4.3

Min CVSS

4.3

Total Count

2

	ID	CVSS	Summary	Last (major) update	Published
	CVE-2019-1010315	4.3	WavPack 5.1 and earlier is affected by: CWE 369: Divide by Zero. The impact is: Divide by zero can lead to sudden crash of a software/service that tries to parse a .wav file. The component is: ParseDsdiffHeaderConfig (dsdiff.c:282). The attack vector	07-10-2022 - 15:06	11-07-2019 - 20:15
	CVE-2019-11498	4.3	WavpackSetConfiguration64 in pack_utils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service (application crash) via a DFF file	07-10-2022 - 13:44	24-04-2019 - 05:29
	CVE-2019-1010317	4.3	WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is: Unexpected control flow, crashes, and segfaults. The component is: ParseCaffHeaderConfig (caff.c:486). The attack vector is: Maliciously crafted .wav fil	06-10-2022 - 18:02	11-07-2019 - 20:15
	CVE-2018-19841	4.3	The function WavpackVerifySingleBlock in open_utils.c in libwavpack.a in WavPack through 5.1.0 allows attackers to cause a denial-of-service (out-of-bounds read and application crash) via a crafted WavPack Lossless Audio file, as demonstrated by wvun	19-08-2022 - 21:44	04-12-2018 - 09:29
	CVE-2019-1010319	4.3	WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is: Unexpected control flow, crashes, and segfaults. The component is: ParseWave64HeaderConfig (wave64.c:211). The attack vector is: Maliciously crafted .wav	09-02-2021 - 17:38	11-07-2019 - 20:15
	CVE-2018-19840	4.3	The function WavpackPackInit in pack_utils.c in libwavpack.a in WavPack through 5.1.0 allows attackers to cause a denial-of-service (resource exhaustion caused by an infinite loop) via a crafted wav audio file because WavpackSetConfiguration64 mishan	15-01-2021 - 13:15	04-12-2018 - 09:29
	CVE-2019-1010319	4.3	WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is: Unexpected control flow, crashes, and segfaults. The component is: ParseWave64HeaderConfig (wave64.c:211). The attack vector is: Maliciously crafted .wav	30-09-2020 - 14:06	11-07-2019 - 20:15
	CVE-2019-1010317	4.3	WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is: Unexpected control flow, crashes, and segfaults. The component is: ParseCaffHeaderConfig (caff.c:486). The attack vector is: Maliciously crafted .wav fil	30-09-2020 - 13:59	11-07-2019 - 20:15

Back to Top Mark selected

Back to Top