15 matches found
CentOS 9 : wavpack-5.4.0-5.el9
The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the wavpack-5.4.0-5.el9 build changelog. - heap Out-of-bounds Read CVE-2021-44269 Note that Nessus has not tested for this issue but has instead relied only on the application's self-report...
Fedora 35 : wavpack (2022-c9c086b06f)
The remote Fedora 35 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-c9c086b06f advisory. Security fix for CVE-2022-2476 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus ha...
Fedora 36 : wavpack (2022-ca2f721916)
The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-ca2f721916 advisory. Security fix for CVE-2022-2476 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus ha...
Rocky Linux 8 : wavpack (RLSA-2022:7558)
The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:7558 advisory. - An out of bounds read was found in Wavpack 5.4.0 in processing .WAV files. This issue triggered in function WavpackPackSamples of file src/packutils.c, tainted...
Oracle Linux 8 : wavpack (ELSA-2022-7558)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-7558 advisory. - CVE-2021-44269 wavpack: heap Out-of-bounds Read Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...
CVE-2022-2476
A null pointer dereference bug was found in wavpack-5.4.0 The results from the ASAN log: AddressSanitizer:DEADLYSIGNAL ===================================================================84257==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 pc 0x561b47a970c6 bp 0x7fff13952fb0 sp...
CVE-2022-2476
A null pointer dereference bug was found in wavpack-5.4.0 The results from the ASAN log: AddressSanitizer:DEADLYSIGNAL ===================================================================84257==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 pc 0x561b47a970c6 bp 0x7fff13952fb0 sp...
CVE-2022-2476
A null pointer dereference bug was found in wavpack-5.4.0 The results from the ASAN log: AddressSanitizer:DEADLYSIGNAL ===================================================================84257==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 pc 0x561b47a970c6 bp 0x7fff13952fb0 sp...
CVE-2022-2476
CVE-2022-2476 affects wavpack (notably wavpack 5.4.0). The issue is a null pointer dereference in wavunpack.c:834, causing a segmentation fault (AddressSanitizer report). Several connected advisories confirm the same root cause and indicate a remediation path: upgrade to a newer wavpack version (...
CVE-2022-2476
A null pointer dereference bug was found in wavpack-5.4.0 The results from the ASAN log: AddressSanitizer:DEADLYSIGNAL ===================================================================84257==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 pc 0x561b47a970c6 bp 0x7fff13952fb0 sp...
EulerOS 2.0 SP8 : wavpack (EulerOS-SA-2022-1954)
According to the versions of the wavpack package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An out of bounds read was found in Wavpack 5.4.0 in processing .WAV files. This issue triggered in function WavpackPackSamples of file...
CVE-2021-44269
An out of bounds read was found in Wavpack 5.4.0 in processing .WAV files. This issue triggered in function WavpackPackSamples of file src/packutils.c, tainted variable cnt is too large, that makes pointer sptr read beyond heap bound...
CVE-2021-44269
An out of bounds read was found in Wavpack 5.4.0 in processing .WAV files. This issue triggered in function WavpackPackSamples of file src/packutils.c, tainted variable cnt is too large, that makes pointer sptr read beyond heap bound...
Heap overflow
An out of bounds read was found in Wavpack 5.4.0 in processing .WAV files. This issue triggered in function WavpackPackSamples of file src/packutils.c, tainted variable cnt is too large, that makes pointer sptr read beyond heap bound...
CVE-2021-44269
An out of bounds read was found in Wavpack 5.4.0 in processing .WAV files. This issue triggered in function WavpackPackSamples of file src/packutils.c, tainted variable cnt is too large, that makes pointer sptr read beyond heap bound...