An issue exists in WavPack 5.1.0 and previous versions. The W64 parser component contains a vulnerability that allows writing to memory because ParseWave64HeaderConfig in wave64.c does not reject multiple format chunks.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wavpack wavpack |
||
debian debian linux 8.0 |
||
debian debian linux 9.0 |