Lucene search
GoogleOSV:CVE-2018-7253HistoryFeb 19, 2018 - 11:29 p.m.
CVE-2018-7253
2018-02-1923:29:00
Google
osv.dev
9
EPSS
0.007
Percentile
80.4%
The ParseDsdiffHeaderConfig function of the cli/dsdiff.c file of WavPack 5.1.0 allows a remote attacker to cause a denial-of-service (heap-based buffer over-read) or possibly overwrite the heap via a maliciously crafted DSDIFF file.
References
packetstormsecurity.com/files/155743/Slackware-Security-Advisory-wavpack-Updates.html
bugs.debian.org/cgi-bin/bugreport.cgi?bug=889559
github.com/dbry/WavPack/commit/36a24c7881427d2e1e4dc1cef58f19eee0d13aec
github.com/dbry/WavPack/issues/28
seclists.org/bugtraq/2019/Dec/37
usn.ubuntu.com/3578-1/
www.debian.org/security/2018/dsa-4125
Related
cvelist
cvelist
CVE-2018-7253
2018-02-19 23:00:00
veracode
veracode
Arbitrary Code Execution
2020-05-10 23:27:55
prion
prion
Heap overflow
2018-02-19 23:29:00
ubuntucve
ubuntucve
CVE-2018-7253
2018-02-19 00:00:00
redhatcve
redhatcve
CVE-2018-7253
2018-02-21 20:19:19
alpinelinux
alpinelinux
CVE-2018-7253
2018-02-19 23:29:00
debiancve
debiancve
CVE-2018-7253
2018-02-19 23:29:00
cve
cve
CVE-2018-7253
2018-02-19 23:29:00
nvd
nvd
CVE-2018-7253
2018-02-19 23:29:00
nessus
nessus
Fedora 27 : wavpack (2018-3ba1be2e79)
2018-02-28 00:00:00
Ubuntu 17.10 : wavpack vulnerabilities (USN-3578-1)
2018-02-23 00:00:00
Fedora 26 : wavpack (2018-d94e205df8)
2018-03-14 00:00:00
fedora
fedora
[SECURITY] Fedora 26 Update: wavpack-5.1.0-7.fc26
2018-03-13 17:19:56
[SECURITY] Fedora 27 Update: wavpack-5.1.0-7.fc27
2018-02-27 17:31:17
[SECURITY] Fedora 26 Update: mingw-wavpack-5.1.0-4.fc26
2018-03-06 17:34:15
ubuntu
ubuntu
WavPack vulnerabilities
2018-02-22 00:00:00
openvas
openvas
Fedora Update for wavpack FEDORA-2018-3ba1be2e79
2018-02-28 00:00:00
Fedora Update for wavpack FEDORA-2018-d94e205df8
2018-03-14 00:00:00
Ubuntu: Security Advisory (USN-3578-1)
2018-10-26 00:00:00
archlinux
archlinux
[ASA-201802-12] wavpack: arbitrary code execution
2018-02-23 00:00:00
[ASA-201802-13] lib32-wavpack: arbitrary code execution
2018-02-23 00:00:00
debian
debian
[SECURITY] [DSA 4125-1] wavpack security update
2018-02-27 20:32:22
[SECURITY] [DSA 4125-1] wavpack security update
2018-02-27 20:32:22
osv
osv
wavpack - security update
2018-02-27 00:00:00
libwavpack1-32bit-5.4.0-1.6 on GA media
2024-06-15 00:00:00
freebsd
freebsd
wavpack -- multiple vulnerabilities
2018-05-09 00:00:00
slackware
slackware
[slackware-security] wavpack
2019-12-19 23:44:00
mageia
mageia
Updated wavpack packages fix security vulnerabilities
2019-01-23 18:50:09
suse
suse
Security update for wavpack (moderate)
2021-01-24 00:00:00
Security update for wavpack (moderate)
2021-01-24 00:00:00