Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:25118
HistoryApr 29, 2020 - 2:45 a.m.

Denial Of Service (DoS)

2020-04-2902:45:55
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15
wavpack vulnerability
denial of service
uninitialized variable

EPSS

0.007

Percentile

79.9%

wavpack is vulnerable to denial of service (DoS). The vulnerability exists through the use of uninitialized variable in WavpackSetConfiguration64 leads to DoS.

Affected configurations

Vulners
Node
wavpackwavpackMatch5.1.0_9.el8
OR
-wavpack\Matchstretch5.0.0-2+deb9u2
OR
wavpackwavpackMatch5.1.0_9.el8
OR
-wavpack\Matchstretch5.0.0-2+deb9u2
VendorProductVersionCPE
wavpackwavpack5.1.0_9.el8cpe:2.3:a:wavpack:wavpack:5.1.0_9.el8:*:*:*:*:*:*:*
-wavpack\stretchcpe:2.3:a:-:wavpack\:stretch:5.0.0-2+deb9u2:*:*:*:*:*:*:*

References