A heap out-of-bounds read flaw was found in WavPacks' WavpackPackSamples() function of src/pack_utils.c and only affects the command-line program of WavPack (not libwavpack). This flaw allows an malicious user to exploit this flaw for a website that uses the WavPack command-line program on user-provided files, causing a denial of service. (CVE-2021-44269)
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wavpack wavpack 5.4.0 |
||
fedoraproject fedora 34 |
||
fedoraproject fedora 35 |
||
fedoraproject fedora 36 |