Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSDF1075415-F5E9-11E6-A4E2-5404A68AD561
HistoryJan 21, 2017 - 12:00 a.m.

wavpack -- multiple invalid memory reads

2017-01-2100:00:00
vuxml.freebsd.org
8

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.004 Low

EPSS

Percentile

74.1%

JSON

David Bryant reports:

global buffer overread in read_code / read_words.c
heap out of bounds read in WriteCaffHeader / caff.c
heap out of bounds read in unreorder_channels / wvunpack.c
heap oob read in read_new_config_info / open_utils.c

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchwavpack< 5.1.0UNKNOWN

Related

nessus 12
openvas 11
fedora 4
veracode 4
redhatcve 4
prion 4
osv 4
ubuntucve 4
cve 4
alpinelinux 4
debiancve 4
mageia 1
rosalinux 1
ubuntu 1
nessus
nessus
openSUSE Security Update : wavpack (openSUSE-2018-227)
2018-03-07 00:00:00
SUSE SLED12 / SLES12 Security Update : wavpack (SUSE-SU-2018:0608-1)
2018-03-06 00:00:00
FreeBSD : wavpack -- multiple invalid memory reads (f1075415-f5e9-11e6-a4e2-5404a68ad561)
2017-02-21 00:00:00
openvas
openvas
Fedora Update for mingw-wavpack FEDORA-2017-3893b6e15b
2017-02-21 00:00:00
Fedora Update for mingw-wavpack FEDORA-2017-16f06ee9d8
2017-02-21 00:00:00
Fedora Update for wavpack FEDORA-2017-ab4f51572f
2017-02-20 00:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: wavpack-5.1.0-1.fc25
2017-02-02 20:30:33
[SECURITY] Fedora 24 Update: wavpack-5.1.0-1.fc24
2017-02-04 23:49:40
[SECURITY] Fedora 25 Update: mingw-wavpack-5.1.0-1.fc25
2017-02-20 18:55:08
veracode
veracode
Denial Of Service (DoS)
2020-12-06 04:16:18
Denial Of Service (DoS)
2020-12-06 04:16:15
Denial Of Service (DoS)
2020-12-06 04:16:17
redhatcve
redhatcve
CVE-2016-10171
2017-01-31 10:18:39
CVE-2016-10169
2017-01-31 10:18:02
CVE-2016-10170
2017-01-31 10:18:24
prion
prion
Out-of-bounds
2017-03-14 14:59:00
Out-of-bounds
2017-03-14 14:59:00
Out-of-bounds
2017-03-14 14:59:00
osv
osv
CVE-2016-10170
2017-03-14 14:59:00
CVE-2016-10169
2017-03-14 14:59:00
CVE-2016-10171
2017-03-14 14:59:00
ubuntucve
ubuntucve
CVE-2016-10169
2017-03-14 00:00:00
CVE-2016-10170
2017-03-14 00:00:00
CVE-2016-10171
2017-03-14 00:00:00
cve
cve
CVE-2016-10171
2017-03-14 14:59:00
CVE-2016-10170
2017-03-14 14:59:00
CVE-2016-10169
2017-03-14 14:59:00
alpinelinux
alpinelinux
CVE-2016-10169
2017-03-14 14:59:00
CVE-2016-10170
2017-03-14 14:59:00
CVE-2016-10171
2017-03-14 14:59:00
debiancve
debiancve
CVE-2016-10170
2017-03-14 14:59:00
CVE-2016-10171
2017-03-14 14:59:00
CVE-2016-10169
2017-03-14 14:59:00
mageia
mageia
Updated wavpack packages fix security vulnerability
2017-03-17 14:12:53
rosalinux
rosalinux
Advisory ROSA-SA-2021-1995
2021-07-02 18:19:37
ubuntu
ubuntu
WavPack vulnerabilities
2018-02-12 00:00:00

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.004 Low

EPSS

Percentile

74.1%

JSON
Related for F1075415-F5E9-11E6-A4E2-5404A68AD561
nessus12openvas11fedora4veracode4redhatcve4prion4osv4ubuntucve4cve4alpinelinux4debiancve4mageia1rosalinux1ubuntu1