The read_code function in read_words.c in Wavpack before 5.1.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WV file.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2017/01/28/9 | Mailing List Patch Third Party Advisory |
http://www.securityfocus.com/bid/95883 | Third Party Advisory VDB Entry |
https://github.com/dbry/WavPack/commit/4bc05fc490b66ef2d45b1de26abf1455b486b0dc | Patch |
https://sourceforge.net/p/wavpack/mailman/message/35557889/ | Exploit Third Party Advisory |
https://usn.ubuntu.com/3568-1/ | |
http://www.openwall.com/lists/oss-security/2017/01/28/9 | Mailing List Patch Third Party Advisory |
http://www.securityfocus.com/bid/95883 | Third Party Advisory VDB Entry |
https://github.com/dbry/WavPack/commit/4bc05fc490b66ef2d45b1de26abf1455b486b0dc | Patch |
https://sourceforge.net/p/wavpack/mailman/message/35557889/ | Exploit Third Party Advisory |
https://usn.ubuntu.com/3568-1/ |
Configurations
History
21 Nov 2024, 02:43
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.openwall.com/lists/oss-security/2017/01/28/9 - Mailing List, Patch, Third Party Advisory | |
References | () http://www.securityfocus.com/bid/95883 - Third Party Advisory, VDB Entry | |
References | () https://github.com/dbry/WavPack/commit/4bc05fc490b66ef2d45b1de26abf1455b486b0dc - Patch | |
References | () https://sourceforge.net/p/wavpack/mailman/message/35557889/ - Exploit, Third Party Advisory | |
References | () https://usn.ubuntu.com/3568-1/ - |
Information
Published : 2017-03-14 14:59
Updated : 2024-11-21 02:43
NVD link : CVE-2016-10169
Mitre link : CVE-2016-10169
CVE.ORG link : CVE-2016-10169
JSON object : View
Products Affected
wavpack_project
- wavpack
CWE
CWE-125
Out-of-bounds Read