Lucene search
GoogleOSV:CVE-2018-7254HistoryFeb 19, 2018 - 11:29 p.m.
CVE-2018-7254
2018-02-1923:29:00
Google
osv.dev
9
EPSS
0.017
Percentile
87.8%
The ParseCaffHeaderConfig function of the cli/caff.c file of WavPack 5.1.0 allows a remote attacker to cause a denial-of-service (global buffer over-read), or possibly trigger a buffer overflow or incorrect memory allocation, via a maliciously crafted CAF file.
References
packetstormsecurity.com/files/155743/Slackware-Security-Advisory-wavpack-Updates.html
bugs.debian.org/cgi-bin/bugreport.cgi?bug=889274
github.com/dbry/WavPack/commit/8e3fe45a7bac31d9a3b558ae0079e2d92a04799e
github.com/dbry/WavPack/issues/26
seclists.org/bugtraq/2019/Dec/37
usn.ubuntu.com/3578-1/
www.debian.org/security/2018/dsa-4125
www.exploit-db.com/exploits/44154/
Related
alpinelinux
alpinelinux
CVE-2018-7254
2018-02-19 23:29:00
cvelist
cvelist
CVE-2018-7254
2018-02-19 23:00:00
veracode
veracode
Arbitrary Code Execution
2020-05-10 23:27:56
redhatcve
redhatcve
CVE-2018-7254
2018-02-21 20:48:50
nvd
nvd
CVE-2018-7254
2018-02-19 23:29:00
prion
prion
Buffer overflow
2018-02-19 23:29:00
zdt
zdt
Wavpack 5.1.0 - Denial of Service Exploit
2018-02-21 00:00:00
packetstorm
packetstorm
Wavpack 5.1.0 Denial Of Service
2018-02-23 00:00:00
ubuntucve
ubuntucve
CVE-2018-7254
2018-02-19 00:00:00
debiancve
debiancve
CVE-2018-7254
2018-02-19 23:29:00
cve
cve
CVE-2018-7254
2018-02-19 23:29:00
exploitpack
exploitpack
Wavpack 5.1.0 - Denial of Service
2018-02-21 00:00:00
exploitdb
exploitdb
Wavpack 5.1.0 - Denial of Service
2018-02-21 00:00:00
ubuntu
ubuntu
WavPack vulnerabilities
2018-02-22 00:00:00
nessus
nessus
Ubuntu 17.10 : wavpack vulnerabilities (USN-3578-1)
2018-02-23 00:00:00
Fedora 27 : mingw-wavpack (2018-023baab00f)
2018-03-07 00:00:00
Fedora 26 : mingw-wavpack (2018-5950093e69)
2018-03-07 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-3578-1)
2018-10-26 00:00:00
Fedora Update for mingw-wavpack FEDORA-2018-5950093e69
2018-03-14 00:00:00
Fedora Update for mingw-wavpack FEDORA-2018-023baab00f
2018-03-14 00:00:00
archlinux
archlinux
[ASA-201802-13] lib32-wavpack: arbitrary code execution
2018-02-23 00:00:00
[ASA-201802-12] wavpack: arbitrary code execution
2018-02-23 00:00:00
osv
osv
wavpack - security update
2018-02-27 00:00:00
libwavpack1-32bit-5.4.0-1.6 on GA media
2024-06-15 00:00:00
fedora
fedora
[SECURITY] Fedora 26 Update: mingw-wavpack-5.1.0-4.fc26
2018-03-06 17:34:15
[SECURITY] Fedora 27 Update: mingw-wavpack-5.1.0-4.fc27
2018-03-06 17:35:08
debian
debian
[SECURITY] [DSA 4125-1] wavpack security update
2018-02-27 20:32:22
[SECURITY] [DSA 4125-1] wavpack security update
2018-02-27 20:32:22
freebsd
freebsd
wavpack -- multiple vulnerabilities
2018-05-09 00:00:00
slackware
slackware
[slackware-security] wavpack
2019-12-19 23:44:00
mageia
mageia
Updated wavpack packages fix security vulnerabilities
2019-01-23 18:50:09
suse
suse
Security update for wavpack (moderate)
2021-01-24 00:00:00
Security update for wavpack (moderate)
2021-01-24 00:00:00