25 matches found
EUVD-2019-3171
Malware in sbrugna...
Ubuntu 18.04 LTS : WavPack vulnerability (USN-3960-1)
The remote Ubuntu 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-3960-1 advisory. It was discovered that WavPack incorrectly handled certain DFF files. An attacker could possibly use this issue to cause a denial of service. Tenable has extracte...
Ubuntu: Security Advisory (USN-3960-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
The vulnerability of the WavpackSetConfiguration64 function in the packUtils.c component of the WavPack audio codec allows a hacker to trigger a service failure by accessing an uninitialized pointer.
The vulnerability of the WavPack audio codec relates to the access to an uninitialized pointer. Exploiting this vulnerability allows a remote attacker to trigger a service failure using a DFF file without proper frequency information...
wavpack: Use of uninitialized variable in WavpackSetConfiguration64 leads to DoS
WavpackSetConfiguration64 in packutils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service application crash via a DFF file that lacks valid sample-rate data...
CVE-2019-11498
WavpackSetConfiguration64 in packutils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service application crash via a DFF file that lacks valid sample-rate data...
Huawei EulerOS: Security Advisory for wavpack (EulerOS-SA-2019-2122)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP8 : wavpack (EulerOS-SA-2019-2122)
According to the version of the wavpack package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - WavpackSetConfiguration64 in packutils.c in libwavpack.a in WavPack through 5.1.0 has a 'Conditional jump or move depends on uninitialised value'...
Security update for wavpack (low)
openSUSE Security Update: Security update for wavpack Announcement ID: openSUSE-SU-2019:2067-1 Rating: low References: 1133384 1141334 Cross-References: CVE-2019-1010319 CVE-2019-11498 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 An update that fixes two vulnerabilities is now...
Updated wavpack packages fix security vulnerabilities
Updated wavpack packages fixes security vulnerabilities: It was discovered that WavPack incorrectly handled certain DFF files. An attacker could possibly use this issue to cause a denial of service CVE-2019-11498. Rohan Padhye discovered that WavPack incorrectly handled certain WAV files. An...
MGASA-2019-0230 Updated wavpack packages fix security vulnerabilities
Updated wavpack packages fixes security vulnerabilities: It was discovered that WavPack incorrectly handled certain DFF files. An attacker could possibly use this issue to cause a denial of service CVE-2019-11498. Rohan Padhye discovered that WavPack incorrectly handled certain WAV files. An...
USN-3960-1: WavPack vulnerability | Cloud Foundry
Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description It was discovered that WavPack incorrectly handled certain DFF files. An attacker could possibly use this issue to cause a denial of service. CVEs contained in this USN include: CVE-2019-11498 Affected...
USN-3960-1: WavPack vulnerability
It was discovered that WavPack incorrectly handled certain DFF files. An attacker could possibly use this issue to cause a denial of service...
USN-3960-1 wavpack vulnerability
It was discovered that WavPack incorrectly handled certain DFF files. An attacker could possibly use this issue to cause a denial of service...
CVE-2019-11498
WavpackSetConfiguration64 in packutils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service application crash via a DFF file that lacks valid sample-rate data...
Design/Logic Flaw
WavpackSetConfiguration64 in packutils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service application crash via a DFF file that lacks valid sample-rate data...
CVE-2019-11498
WavpackSetConfiguration64 in packutils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service application crash via a DFF file that lacks valid sample-rate data...
CVE-2019-11498
WavpackSetConfiguration64 in packutils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service application crash via a DFF file that lacks valid sample-rate data...
CVE-2019-11498
WavpackSetConfiguration64 in packutils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service application crash via a DFF file that lacks valid sample-rate data...
UBUNTU-CVE-2019-11498
WavpackSetConfiguration64 in packutils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service application crash via a DFF file that lacks valid sample-rate data...