CVE-2019-11498

Published: 24 April 2019

WavpackSetConfiguration64 in pack_utils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service (application crash) via a DFF file that lacks valid sample-rate data.

Priority

Cvss 3 Severity Score

6.5

Score breakdown

Status

Package	Release	Status
wavpack Launchpad, Ubuntu, Debian	bionic	Released (5.1.0-2ubuntu1.3)
	cosmic	Released (5.1.0-4ubuntu0.2)
	disco	Released (5.1.0-5ubuntu0.1)
	trusty	Does not exist (trusty was needs-triage)
	upstream	Needs triage
	xenial	Not vulnerable (code not present)
	Patches: upstream: https://github.com/dbry/WavPack/commit/bc6cba3f552c44565f7f1e66dc1580189addb2b4

Severity score breakdown

Parameter	Value
Base score	6.5
Attack vector	Network
Attack complexity	Low
Privileges required	None
User interaction	Required
Scope	Unchanged
Confidentiality	None
Integrity impact	None
Availability impact	High
Vector	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References

Bugs

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927903

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›