24 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-2476
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A null pointer dereference bug was found in wavpack-5.4.0 The results from the ASAN log: AddressSanitizer:DEADLYSIGNAL...
OESA-2024-2515 wavpack security update
WavPack is a completely open audio compression format providing lossless, high-quality lossy, and a unique hybrid compression mode. For version 5.0.0, several new file formats and lossless DSD audio compression were added, making WavPack a universal audio archiving solution. Security Fixes: A nul...
OESA-2024-2514 wavpack security update
WavPack is a completely open audio compression format providing lossless, high-quality lossy, and a unique hybrid compression mode. For version 5.0.0, several new file formats and lossless DSD audio compression were added, making WavPack a universal audio archiving solution. Security Fixes: A nul...
RHEL 9 : wavpack (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - wavpack: null pointer dereference in main in cli/wvunpack.c CVE-2022-2476 Note that Nessus has not tested for this...
CVE-2022-2476 affecting package wavpack for versions less than 5.6.0-1
CVE-2022-2476 affecting package wavpack for versions less than 5.6.0-1. An upgraded version of the package is available that resolves this issue...
Low: wavpack
Issue Overview: A null pointer dereference bug was found in wavpack-5.4.0 The results from the ASAN log: AddressSanitizer:DEADLYSIGNAL ===================================================================84257==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 pc 0x561b47a970c6 bp...
Fedora 35 : wavpack (2022-c9c086b06f)
The remote Fedora 35 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-c9c086b06f advisory. Security fix for CVE-2022-2476 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus ha...
Fedora 36 : wavpack (2022-ca2f721916)
The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-ca2f721916 advisory. Security fix for CVE-2022-2476 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus ha...
EulerOS 2.0 SP8 : wavpack (EulerOS-SA-2022-2811)
According to the versions of the wavpack package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A null pointer dereference bug was found in wavpack-5.4.0 The results from the ASAN log: AddressSanitizer:DEADLYSIGNAL...
Ubuntu: Security Advisory (USN-5721-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 ESM : WavPack vulnerability (USN-5721-1)
The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5721-1 advisory. It was discovered that WavPack was not properly performing checks when dealing with memory. If a user were tricked into decompressing a specially crafted WavPack...
Mageia: Security Advisory (MGASA-2022-0291)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2022-0291 Updated wavpack packages fix security vulnerability
Null pointer dereference in wvunpack CVE-2022-2476...
Updated wavpack packages fix security vulnerability
Null pointer dereference in wvunpack CVE-2022-2476...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : wavpack (SUSE-SU-2022:2681-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:2681-1 advisory. - CVE-2022-2476: Fixed a Null pointer dereference in wvunpack bsc1201716. Tenable has extracted the...
SUSE SLES12 Security Update : wavpack (SUSE-SU-2022:2682-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:2682-1 advisory. - CVE-2022-2476: Fixed a Null pointer dereference in wvunpack bsc1201716. Tenable has extracted the preceding description block directly fro...
openSUSE: Security Advisory for wavpack (SUSE-SU-2022:2681-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE-SU-2022:2682-1 Security update for wavpack
This update for wavpack fixes the following issues: - CVE-2022-2476: Fixed a Null pointer dereference in wvunpack bsc1201716...
SUSE-SU-2022:2681-1 Security update for wavpack
This update for wavpack fixes the following issues: - CVE-2022-2476: Fixed a Null pointer dereference in wvunpack bsc1201716...
CVE-2022-2476
A NULL pointer dereference vulnerability was found in WavePack's main function at cli/wvunpack.c. This flaw allows an attacker to trick a user into opening a crafted wavpack file that could cause an application to crash, causing a denial of service...