Описание
WavPack 5.3.0 has an out-of-bounds write in WavpackPackSamples in pack_utils.c because of an integer overflow in a malloc argument. NOTE: some third-parties claim that there are later "unofficial" releases through 5.3.2, which are also affected.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 5.1.0-2ubuntu1.5 |
| devel | not-affected | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | released | 5.1.0-2ubuntu1.5 |
| esm-infra/focal | released | 5.2.0-1ubuntu0.1 |
| esm-infra/xenial | not-affected | |
| focal | released | 5.2.0-1ubuntu0.1 |
| groovy | released | 5.3.0-1ubuntu0.1 |
| precise/esm | DNE | |
| trusty | ignored | end of standard support |
Показывать по
EPSS
5.8 Medium
CVSS2
6.1 Medium
CVSS3
Связанные уязвимости
WavPack 5.3.0 has an out-of-bounds write in WavpackPackSamples in pack_utils.c because of an integer overflow in a malloc argument. NOTE: some third-parties claim that there are later "unofficial" releases through 5.3.2, which are also affected.
WavPack 5.3.0 has an out-of-bounds write in WavpackPackSamples in pack_utils.c because of an integer overflow in a malloc argument. NOTE: some third-parties claim that there are later "unofficial" releases through 5.3.2, which are also affected.
WavPack 5.3.0 has an out-of-bounds write in WavpackPackSamples in pack ...
EPSS
5.8 Medium
CVSS2
6.1 Medium
CVSS3