CVE-2016-10172Out-of-bounds Read in Wavpack

CWE-125Out-of-bounds ReadCWE-611XML External Entity (XXE) Injection13 documents7 sources
Severity
5.5MEDIUMNVD
GHSA9.8
EPSS
0.4%
top 37.58%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
WavpackDebian WavpackWavpack Project Wavpack
Timeline
PublishedMar 14
Latest updateMay 17

Description

The read_new_config_info function in open_utils.c in Wavpack before 5.1.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WV file.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

debiandebian/wavpack< wavpack 5.0.0-2 (bookworm)
Debianwavpack/wavpack< 5.0.0-2+3

Patches

Patch: www.openwall.comPatch: github.comPatch: www.openwall.com

🔴Vulnerability Details

3
GHSA
GHSA-xg3f-wmmq-xc35: The read_new_config_info function in open_utils2022-05-17
GHSA
Improper Restriction of XML External Entity Reference in jackson-mapper-asl2020-02-04
OSV
CVE-2016-10172: The read_new_config_info function in open_utils2017-03-14

📋Vendor Advisories

3
Red Hat
jackson-mapper-asl: XML external entity similar to CVE-2016-37202019-11-18
Red Hat
wavpack: Heap out of bounds read in read_new_config_info / open_utils.c2016-12-20
Debian
CVE-2016-10172: wavpack - The read_new_config_info function in open_utils.c in Wavpack before 5.1.0 allows...2016

💬Community

6
Bugzilla
CVE-2019-10172 jackson-mapper-asl: XML external entity similar to CVE-2016-37202019-05-29
Bugzilla
CVE-2016-10169 CVE-2016-10170 CVE-2016-10171 CVE-2016-10172 mingw-wavpack: various flaws [epel-7]2017-01-31
Bugzilla
CVE-2016-10169 CVE-2016-10170 CVE-2016-10171 CVE-2016-10172 wavpack: various flaws [epel-5]2017-01-31
Bugzilla
CVE-2016-10172 wavpack: Heap out of bounds read in read_new_config_info / open_utils.c2017-01-31
Bugzilla
CVE-2016-10169 CVE-2016-10170 CVE-2016-10171 CVE-2016-10172 mingw-wavpack: various flaws [fedora-all]2017-01-31