Lucene search

K

MitreCVELIST:CVE-2018-10537

HistoryApr 29, 2018 - 3:00 p.m.

CVE-2018-10537

2018-04-2915:00:00

mitre

www.cve.org

6.1 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

70.8%

An issue was discovered in WavPack 5.1.0 and earlier. The W64 parser component contains a vulnerability that allows writing to memory because ParseWave64HeaderConfig in wave64.c does not reject multiple format chunks.

References

packetstormsecurity.com/files/155743/Slackware-Security-Advisory-wavpack-Updates.html

github.com/dbry/WavPack/commit/26cb47f99d481ad9b93eeff80d26e6b63bbd7e15

github.com/dbry/WavPack/issues/30

github.com/dbry/WavPack/issues/31

github.com/dbry/WavPack/issues/32

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CFFFWIWALGQPKINRDW3PRGRD5LOLGZA/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BRWQNE3TH5UF64IKHKKHVCHJHUOVKJUH/

seclists.org/bugtraq/2019/Dec/37

usn.ubuntu.com/3637-1/

www.debian.org/security/2018/dsa-4197

6.1 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

70.8%

Related for CVELIST:CVE-2018-10537

prion1 veracode1 cve1 redhatcve1 ubuntucve1 debiancve1 alpinelinux1 osv2 nvd1 ubuntu1 debian1 nessus11 fedora5 openvas12 freebsd1 slackware1 mageia1 suse2 rosalinux1