CVE-2018-6767 — Out-of-bounds Read in Wavpack

CWE-125 — Out-of-bounds Read CWE-121 — Stack-based Buffer Overflow10 documents7 sources

Severity

7.8HIGHNVD

OSV5.5

EPSS

0.9%

top 24.03%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wavpack Debian Wavpack Canonical Ubuntu Linux +1 more

Timeline

PublishedFeb 6

Latest updateMay 13

Description

A stack-based buffer over-read in the ParseRiffHeaderConfig function of cli/riff.c file of WavPack 5.1.0 allows a remote attacker to cause a denial-of-service attack or possibly have unspecified other impact via a maliciously crafted RF64 file.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages4 packages

▶debiandebian/wavpack< wavpack 5.1.0-3 (bookworm)

▶Debianwavpack/wavpack< 5.1.0-3+3

▶Ubuntuwavpack/wavpack< 4.70.0-1ubuntu0.1+1

▶NVDwavpack/wavpack5.1.0

Also affects: Debian Linux 9.0, Ubuntu Linux 14.04, 16.04, 17.10

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-gqq6-54h2-52m3: A stack-based buffer over-read in the ParseRiffHeaderConfig function of cli/riff↗2022-05-13

▶

OSV

wavpack vulnerabilities↗2018-02-12

▶

OSV

CVE-2018-6767: A stack-based buffer over-read in the ParseRiffHeaderConfig function of cli/riff↗2018-02-06

▶

📋Vendor Advisories

Ubuntu

WavPack vulnerabilities↗2018-02-12

▶

Red Hat

wavpack: stack buffer overread via crafted wav file↗2018-02-03

▶

Debian

CVE-2018-6767: wavpack - A stack-based buffer over-read in the ParseRiffHeaderConfig function of cli/riff...↗2018

▶

💬Community

Bugzilla

CVE-2018-6767 mingw-wavpack: wavpack: stack buffer overflow via crafted wav file [epel-7]↗2018-02-06

▶

Bugzilla

CVE-2018-6767 wavpack: stack buffer overflow via crafted wav file [fedora-all]↗2018-02-06

▶

Bugzilla

CVE-2018-6767 wavpack: stack buffer overread via crafted wav file↗2018-02-06

▶