Information on source package wavpack

Available versions

ReleaseVersion
jessie4.70.0-1
stretch (security)5.0.0-2+deb9u2
buster5.1.0-6
bullseye5.1.0-7
sid5.1.0-7

Open issues

BugjessiestretchbusterbullseyesidDescription
CVE-2019-11498fixedvulnerable (no DSA)fixedfixedfixedWavpackSetConfiguration64 in pack_utils.c in libwavpack.a in WavPack t ...
CVE-2019-1010319vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedWavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialize ...
CVE-2019-1010317vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedWavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialize ...
CVE-2019-1010315vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedWavPack 5.1 and earlier is affected by: CWE 369: Divide by Zero. The i ...
CVE-2018-19841vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedThe function WavpackVerifySingleBlock in open_utils.c in libwavpack.a ...
CVE-2018-19840vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedThe function WavpackPackInit in pack_utils.c in libwavpack.a in WavPac ...
CVE-2016-10169vulnerable (no DSA)fixedfixedfixedfixedThe read_code function in read_words.c in Wavpack before 5.1.0 allows ...

Resolved issues

BugDescription
CVE-2018-7254The ParseCaffHeaderConfig function of the cli/caff.c file of WavPack 5 ...
CVE-2018-7253The ParseDsdiffHeaderConfig function of the cli/dsdiff.c file of WavPa ...
CVE-2018-6767A stack-based buffer over-read in the ParseRiffHeaderConfig function o ...
CVE-2018-10540An issue was discovered in WavPack 5.1.0 and earlier for W64 input. Ou ...
CVE-2018-10539An issue was discovered in WavPack 5.1.0 and earlier for DSDiff input. ...
CVE-2018-10538An issue was discovered in WavPack 5.1.0 and earlier for WAV input. Ou ...
CVE-2018-10537An issue was discovered in WavPack 5.1.0 and earlier. The W64 parser c ...
CVE-2018-10536An issue was discovered in WavPack 5.1.0 and earlier. The WAV parser c ...
CVE-2016-10172The read_new_config_info function in open_utils.c in Wavpack before 5. ...
CVE-2016-10171The unreorder_channels function in cli/wvunpack.c in Wavpack before 5. ...
CVE-2016-10170The WriteCaffHeader function in cli/caff.c in Wavpack before 5.1.0 all ...

Security announcements

DSA / DLADescription
DSA-4197-1wavpack - security update
DSA-4125-1wavpack - security update

Search for package or bug name: Reporting problems