CVE-2019-11498

MEDIUM

Description

WavpackSetConfiguration64 in pack_utils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service (application crash) via a DFF file that lacks valid sample-rate data.

References

https://github.com/dbry/WavPack/commit/bc6cba3f552c44565f7f1e66dc1580189addb2b4

https://github.com/dbry/WavPack/issues/67

https://lists.debian.org/debian-lts-announce/2021/01/msg00013.html

https://lists.fedoraproject.org/archives/list/[email protected]/message/6CFFFWIWALGQPKINRDW3PRGRD5LOLGZA/

https://lists.fedoraproject.org/archives/list/[email protected]/message/BRWQNE3TH5UF64IKHKKHVCHJHUOVKJUH/

https://lists.fedoraproject.org/archives/list/[email protected]/message/NZDKXGA2ZNSSM64ZYDHOWCO4Q4VAKAON/

https://lists.fedoraproject.org/archives/list/[email protected]/message/SCK2YJXY6V5CKGKSF2PPN7RL2DXVOC6G/

https://security.gentoo.org/glsa/202007-19

https://usn.ubuntu.com/3960-1/

Details

Source: MITRE

Published: 2019-04-24

Updated: 2021-01-15

Type: CWE-824

Risk Information

CVSS v2.0

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3.0

Base Score: 6.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 2.8

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:wavpack:wavpack:*:*:*:*:*:*:*:* versions up to 5.1.0 (inclusive)

Configuration 2

OR

cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*

Tenable Plugins

View all (14 total)

IDNameProductFamilySeverity
145884CentOS 8 : wavpack (CESA-2020:1581)NessusCentOS Local Security Checks
medium
145376openSUSE Security Update : wavpack (openSUSE-2021-154)NessusSuSE Local Security Checks
medium
145305openSUSE Security Update : wavpack (openSUSE-2021-153)NessusSuSE Local Security Checks
medium
145253SUSE SLED15 / SLES15 Security Update : wavpack (SUSE-SU-2021:0186-1)NessusSuSE Local Security Checks
medium
145167Debian DLA-2525-1 : wavpack security updateNessusDebian Local Security Checks
medium
143040RHEL 8 : wavpack (RHSA-2020:1581)NessusRed Hat Local Security Checks
medium
138942GLSA-202007-19 : WavPack: Multiple vulnerabilitiesNessusGentoo Local Security Checks
medium
132878Fedora 31 : mingw-wavpack (2020-e55567b6be)NessusFedora Local Security Checks
medium
132877Fedora 30 : mingw-wavpack (2020-73274c9df4)NessusFedora Local Security Checks
medium
130831EulerOS 2.0 SP8 : wavpack (EulerOS-SA-2019-2122)NessusHuawei Local Security Checks
medium
128537openSUSE Security Update : wavpack (openSUSE-2019-2067)NessusSuSE Local Security Checks
medium
128073SUSE SLED15 / SLES15 Security Update : wavpack (SUSE-SU-2019:2191-1)NessusSuSE Local Security Checks
medium
125686Fedora 29 : wavpack (2019-b8a704ff4b)NessusFedora Local Security Checks
medium
125319Fedora 30 : wavpack (2019-52145aa7ca)NessusFedora Local Security Checks
medium