CVE-2019-11498

2020-04-08T05:17:58
ID RH:CVE-2019-11498
Type redhatcve
Reporter redhat.com
Modified 2020-10-20T19:16:08

Description

WavpackSetConfiguration64 in pack_utils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service (application crash) via a DFF file that lacks valid sample-rate data.