21 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-35738
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WavPack 5.3.0 has an out-of-bounds write in WavpackPackSamples in packutils.c because of an integer overflow in a malloc argument. NOTE: some third-parties clai...
RHEL 7 : wavpack (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - wavpack: out of bounds write in ParseRiffHeaderConfig in riff.c CVE-2018-10536 - The readcode function in...
MGASA-2021-0271 Updated wavpack packages fix a security vulnerability
WavPack 5.3.0 has an out-of-bounds write in WavpackPackSamples in packutils.c because of an integer overflow in a malloc argument CVE-2020-35738...
SUSE: Security Advisory (SUSE-SU-2021:14669-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2021:0186-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2021:0929-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for wavpack (openSUSE-SU-2021:0153-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OESA-2021-1131 wavpack security update
WavPack is a completely open audio compression format providing lossless, high-quality lossy, and a unique hybrid compression mode. For version 5.0.0, several new file formats and lossless DSD audio compression were added, making WavPack a universal audio archiving solution. Security Fixes: WavPa...
SUSE SLES12 Security Update : wavpack (SUSE-SU-2021:0929-1)
This update for wavpack fixes the following issues : CVE-2020-35738: Fixed an out-of-bounds write in WavpackPackSamples bsc1180414. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically cle...
SUSE-SU-2021:0929-1 Security update for wavpack
This update for wavpack fixes the following issues: - CVE-2020-35738: Fixed an out-of-bounds write in WavpackPackSamples bsc1180414...
SUSE-SU-2021:14669-1 Security update for wavpack
This update for wavpack fixes the following issues: - CVE-2020-35738: Fixed an out-of-bounds write in WavpackPackSamples bsc1180414...
Fedora: Security Advisory for wavpack (FEDORA-2021-de45e7bb88)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Huawei EulerOS: Security Advisory for wavpack (EulerOS-SA-2021-1177)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 32 : wavpack (2021-de45e7bb88)
The remote Fedora 32 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2021-de45e7bb88 advisory. - WavPack 5.3.0 has an out-of-bounds write in WavpackPackSamples in packutils.c because of an integer overflow in a malloc argument. NOTE: some third-parties...
Security update for wavpack (moderate)
openSUSE Security Update: Security update for wavpack Announcement ID: openSUSE-SU-2021:0153-1 Rating: moderate References: 1091340 1091341 1091342 1091343 1091344 1180414 Cross-References: CVE-2018-10536 CVE-2018-10537 CVE-2018-10538 CVE-2018-10539 CVE-2018-10540 CVE-2018-19840 CVE-2018-19841...
[SECURITY] [DLA 2525-1] wavpack security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2525-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta January 15, 2021 https://wiki.debian.org/LTS -...
FreeBSD : wavpack -- integer overflow in pack_utils.c (6d554d6e-5638-11eb-9d36-5404a68ad561)
The wavpack project reports : src/packutils.c - issue 91: fix integer overflows resulting in buffer overruns CVE-2020-35738 - sanitize configuration parameters better improves clarity and aids debugging C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
[slackware-security] wavpack
New wavpack packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/wavpack-5.4.0-i586-1slack14.2.txz: Upgraded. WavPack 5.4.0 fixes an issue where a specially crafted WAV file could caus...
[ASA-202101-23] wavpack: arbitrary code execution
Arch Linux Security Advisory ASA-202101-23 ========================================== Severity: Medium Date : 2021-01-12 CVE-ID : CVE-2020-35738 Package : wavpack Type : arbitrary code execution Remote : No Link : https://security.archlinux.org/AVG-1387 Summary ======= The package wavpack before...
wavpack -- integer overflow in pack_utils.c
The wavpack project reports: src/packutils.c - issue 91: fix integer overflows resulting in buffer overruns CVE-2020-35738 - sanitize configuration parameters better improves clarity and aids debugging...