Логотип exploitDog
bind:"BDU:2021-03439" OR bind:"CVE-2019-1010317"
Консоль
Логотип exploitDog

exploitDog

bind:"BDU:2021-03439" OR bind:"CVE-2019-1010317"

Количество 8

Количество 8

fstec логотип

BDU:2021-03439

больше 6 лет назад

Уязвимость функции ParseCaffHeaderConfig компонента caff.c аудиокодека WavPack, связанная с использованием неинициализированных ранее переменных, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 6.5
EPSS: Низкий
ubuntu логотип

CVE-2019-1010317

около 6 лет назад

WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is: Unexpected control flow, crashes, and segfaults. The component is: ParseCaffHeaderConfig (caff.c:486). The attack vector is: Maliciously crafted .wav file. The fixed version is: After commit https://github.com/dbry/WavPack/commit/f68a9555b548306c5b1ee45199ccdc4a16a6101b.

CVSS3: 5.5
EPSS: Низкий
redhat логотип

CVE-2019-1010317

около 6 лет назад

WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is: Unexpected control flow, crashes, and segfaults. The component is: ParseCaffHeaderConfig (caff.c:486). The attack vector is: Maliciously crafted .wav file. The fixed version is: After commit https://github.com/dbry/WavPack/commit/f68a9555b548306c5b1ee45199ccdc4a16a6101b.

CVSS3: 3.3
EPSS: Низкий
nvd логотип

CVE-2019-1010317

около 6 лет назад

WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is: Unexpected control flow, crashes, and segfaults. The component is: ParseCaffHeaderConfig (caff.c:486). The attack vector is: Maliciously crafted .wav file. The fixed version is: After commit https://github.com/dbry/WavPack/commit/f68a9555b548306c5b1ee45199ccdc4a16a6101b.

CVSS3: 5.5
EPSS: Низкий
debian логотип

CVE-2019-1010317

около 6 лет назад

WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialize ...

CVSS3: 5.5
EPSS: Низкий
github логотип

GHSA-7wf6-38w5-gjg5

около 3 лет назад

WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is: Unexpected control flow, crashes, and segfaults. The component is: ParseCaffHeaderConfig (caff.c:486). The attack vector is: Maliciously crafted .wav file. The fixed version is: After commit https://github.com/dbry/WavPack/commit/f68a9555b548306c5b1ee45199ccdc4a16a6101b.

CVSS3: 5.5
EPSS: Низкий
rocky логотип

RLSA-2020:1581

больше 5 лет назад

Low: wavpack security update

EPSS: Низкий
oracle-oval логотип

ELSA-2020-1581

больше 5 лет назад

ELSA-2020-1581: wavpack security update (LOW)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
fstec логотип
BDU:2021-03439

Уязвимость функции ParseCaffHeaderConfig компонента caff.c аудиокодека WavPack, связанная с использованием неинициализированных ранее переменных, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 6.5
1%
Низкий
больше 6 лет назад
ubuntu логотип
CVE-2019-1010317

WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is: Unexpected control flow, crashes, and segfaults. The component is: ParseCaffHeaderConfig (caff.c:486). The attack vector is: Maliciously crafted .wav file. The fixed version is: After commit https://github.com/dbry/WavPack/commit/f68a9555b548306c5b1ee45199ccdc4a16a6101b.

CVSS3: 5.5
1%
Низкий
около 6 лет назад
redhat логотип
CVE-2019-1010317

WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is: Unexpected control flow, crashes, and segfaults. The component is: ParseCaffHeaderConfig (caff.c:486). The attack vector is: Maliciously crafted .wav file. The fixed version is: After commit https://github.com/dbry/WavPack/commit/f68a9555b548306c5b1ee45199ccdc4a16a6101b.

CVSS3: 3.3
1%
Низкий
около 6 лет назад
nvd логотип
CVE-2019-1010317

WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is: Unexpected control flow, crashes, and segfaults. The component is: ParseCaffHeaderConfig (caff.c:486). The attack vector is: Maliciously crafted .wav file. The fixed version is: After commit https://github.com/dbry/WavPack/commit/f68a9555b548306c5b1ee45199ccdc4a16a6101b.

CVSS3: 5.5
1%
Низкий
около 6 лет назад
debian логотип
CVE-2019-1010317

WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialize ...

CVSS3: 5.5
1%
Низкий
около 6 лет назад
github логотип
GHSA-7wf6-38w5-gjg5

WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is: Unexpected control flow, crashes, and segfaults. The component is: ParseCaffHeaderConfig (caff.c:486). The attack vector is: Maliciously crafted .wav file. The fixed version is: After commit https://github.com/dbry/WavPack/commit/f68a9555b548306c5b1ee45199ccdc4a16a6101b.

CVSS3: 5.5
1%
Низкий
около 3 лет назад
rocky логотип
RLSA-2020:1581

Low: wavpack security update

больше 5 лет назад
oracle-oval логотип
ELSA-2020-1581

ELSA-2020-1581: wavpack security update (LOW)

больше 5 лет назад

Уязвимостей на страницу