Vulnerability CVE-2018-7254

Vulnerability CVE-2018-7254

Published: 2018-02-19 Modified: 2018-02-20

Description:

	Topic	Author	Date
Med.	Wavpack 5.1.0 Denial of Service	r4xis	22.02.2018

Type:

(Out-of-bounds Read)

CVSS Base Score	Impact Subscore	Exploitability Subscore
6.8/10	6.4/10	8.6/10

Affected software
Wavpack -> Wavpack
Debian -> Debian linux

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=889274

https://github.com/dbry/WavPack/commit/8e3fe45a7bac31d9a3b558ae0079e2d92a04799e

https://github.com/dbry/WavPack/issues/26

https://usn.ubuntu.com/3578-1/

https://www.debian.org/security/2018/dsa-4125

https://www.exploit-db.com/exploits/44154/