Lucene search
K

95 matches found

Tenable Nessus
Tenable Nessus
added 2019/09/16 12:0 a.m.29 views

EulerOS 2.0 SP2 : wavpack (EulerOS-SA-2019-1874)

According to the version of the wavpack package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The function WavpackPackInit in packutils.c in libwavpack.a in WavPack through 5.1.0 allows attackers to cause a denial-of-service resource...

5.5CVSS5.8AI score0.02304EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/09/16 12:0 a.m.29 views

EulerOS 2.0 SP5 : wavpack (EulerOS-SA-2019-1901)

According to the version of the wavpack package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The function WavpackPackInit in packutils.c in libwavpack.a in WavPack through 5.1.0 allows attackers to cause a denial-of-service resource...

5.5CVSS5.8AI score0.02304EPSS
Exploits0References2
OSV
OSV
added 2019/09/05 8:22 a.m.7 views

OPENSUSE-SU-2019:2067-1 Security update for wavpack

This update for wavpack fixes the following issues: Security issues fixed: - CVE-2019-1010319: Fixed use of uninitialized variable in ParseWave64HeaderConfig that can result in unexpected control flow, crashes, and segfaults bsc1141334. - CVE-2019-11498: Fixed possible denial of service applicati...

6.5CVSS6AI score0.03044EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2019/08/27 12:0 a.m.34 views

EulerOS 2.0 SP8 : wavpack (EulerOS-SA-2019-1831)

According to the versions of the wavpack package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The function WavpackVerifySingleBlock in openutils.c in libwavpack.a in WavPack through 5.1.0 allows attackers to cause a denial-of-service...

5.5CVSS5.8AI score0.02542EPSS
Exploits1References3
OSV
OSV
added 2019/04/24 5:29 a.m.2 views

ALPINE-CVE-2019-11498

WavpackSetConfiguration64 in packutils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service application crash via a DFF file that lacks valid sample-rate data...

6.5CVSS6.8AI score0.03044EPSS
Exploits1References1
OSV
OSV
added 2019/04/24 5:29 a.m.1 views

DEBIAN-CVE-2019-11498

WavpackSetConfiguration64 in packutils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service application crash via a DFF file that lacks valid sample-rate data...

6.5CVSS5.6AI score0.03044EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2019/04/24 12:0 a.m.25 views

CVE-2019-11498

WavpackSetConfiguration64 in packutils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service application crash via a DFF file that lacks valid sample-rate data...

6.5CVSS6.6AI score0.03044EPSS
Exploits1References3
OSV
OSV
added 2019/04/24 12:0 a.m.10 views

UBUNTU-CVE-2019-11498

WavpackSetConfiguration64 in packutils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service application crash via a DFF file that lacks valid sample-rate data...

6.5CVSS6.5AI score0.03044EPSS
Exploits1References4
Prion
Prion
added 2018/12/04 9:29 a.m.19 views

Code injection

The function WavpackPackInit in packutils.c in libwavpack.a in WavPack through 5.1.0 allows attackers to cause a denial-of-service resource exhaustion caused by an infinite loop via a crafted wav audio file because WavpackSetConfiguration64 mishandles a sample rate of zero...

4.3CVSS5.5AI score0.02304EPSS
Exploits0References13Affected Software4
OSV
OSV
added 2018/12/04 9:29 a.m.1 views

DEBIAN-CVE-2018-19840

The function WavpackPackInit in packutils.c in libwavpack.a in WavPack through 5.1.0 allows attackers to cause a denial-of-service resource exhaustion caused by an infinite loop via a crafted wav audio file because WavpackSetConfiguration64 mishandles a sample rate of zero...

5.5CVSS5.3AI score0.02304EPSS
Exploits0References1
OSV
OSV
added 2018/12/04 9:29 a.m.3 views

ALPINE-CVE-2018-19840

The function WavpackPackInit in packutils.c in libwavpack.a in WavPack through 5.1.0 allows attackers to cause a denial-of-service resource exhaustion caused by an infinite loop via a crafted wav audio file because WavpackSetConfiguration64 mishandles a sample rate of zero...

5.5CVSS6.8AI score0.02304EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2018/12/04 9:0 a.m.38 views

CVE-2018-19840

The function WavpackPackInit in packutils.c in libwavpack.a in WavPack through 5.1.0 allows attackers to cause a denial-of-service resource exhaustion caused by an infinite loop via a crafted wav audio file because WavpackSetConfiguration64 mishandles a sample rate of zero...

5.5CVSS5.6AI score0.02304EPSS
Exploits0
OSV
OSV
added 2018/12/04 12:0 a.m.10 views

UBUNTU-CVE-2018-19840

The function WavpackPackInit in packutils.c in libwavpack.a in WavPack through 5.1.0 allows attackers to cause a denial-of-service resource exhaustion caused by an infinite loop via a crafted wav audio file because WavpackSetConfiguration64 mishandles a sample rate of zero...

5.5CVSS6.4AI score0.02304EPSS
Exploits0References4
OSV
OSV
added 2018/03/31 5:29 p.m.7 views

CVE-2017-18255

The perfcputimemaxpercenthandler function in kernel/events/core.c in the Linux kernel before 4.11 allows local users to cause a denial of service integer overflow or possibly have unspecified other impact via a large value, as demonstrated by an incorrect sample-rate calculation...

7.8CVSS8.4AI score
Exploits0References7
OSV
OSV
added 2018/03/31 5:29 p.m.1 views

DEBIAN-CVE-2017-18255

The perfcputimemaxpercenthandler function in kernel/events/core.c in the Linux kernel before 4.11 allows local users to cause a denial of service integer overflow or possibly have unspecified other impact via a large value, as demonstrated by an incorrect sample-rate calculation...

7.8CVSS7.7AI score0.00402EPSS
Exploits0References1
Prion
Prion
added 2018/03/31 5:29 p.m.34 views

Integer overflow

The perfcputimemaxpercenthandler function in kernel/events/core.c in the Linux kernel before 4.11 allows local users to cause a denial of service integer overflow or possibly have unspecified other impact via a large value, as demonstrated by an incorrect sample-rate calculation...

4.6CVSS7.5AI score0.00402EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2018/03/31 5:29 p.m.20 views

CVE-2017-18255

The perfcputimemaxpercenthandler function in kernel/events/core.c in the Linux kernel before 4.11 allows local users to cause a denial of service integer overflow or possibly have unspecified other impact via a large value, as demonstrated by an incorrect sample-rate calculation...

7.8CVSS8.1AI score0.00402EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2018/03/31 5:0 p.m.54 views

CVE-2017-18255

The perfcputimemaxpercenthandler function in kernel/events/core.c in the Linux kernel before 4.11 allows local users to cause a denial of service integer overflow or possibly have unspecified other impact via a large value, as demonstrated by an incorrect sample-rate calculation...

7.8CVSS8AI score0.00402EPSS
Exploits0
Fedora
Fedora
added 2018/02/27 5:31 p.m.18 views

[SECURITY] Fedora 27 Update: libsamplerate-0.1.9-1.fc27

Secret Rabbit Code is a sample rate converter for audio. It is capable of arbitrary and time varying conversions. It can downsample by a factor of 12 and upsample by the same factor. The ratio of input and output sample rates can be a real number. The conversion ratio can also vary with time for...

5.5CVSS3.3AI score0.00913EPSS
Exploits0
CNVD
CNVD
added 2017/10/12 12:0 a.m.3 views

GNU Libextractor Denial of Service Vulnerability

GNU Libextractor is a set of libraries developed by the GNU Project for extracting metadata from files. A denial of service vulnerability exists in the 'EXTRACTORwavextractmethod' method of the wavextractor.c file in GNU Libextractor version 1.4, which stems from the program failing to detect the...

5.5CVSS6AI score0.01441EPSS
Exploits1References1
Rows per page
Query Builder