PT-2018-3705 · Wavpack+7 · Wavpack+7

Published

2018-11-26

·

Updated

2024-06-15

·

CVE-2018-19840

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions WavPack versions through 5.1.0
Description The issue is related to the function WavpackPackInit in the pack utils.c component of the WavPack audio codec. It is associated with an infinite loop. Exploitation of this issue allows a remote attacker to cause a denial-of-service via a specially crafted wav audio file. This is because the function WavpackSetConfiguration64 mishandles a sample rate of zero, leading to resource exhaustion.
Recommendations For versions through 5.1.0, consider disabling the WavpackPackInit function or restricting the use of the pack utils.c component until a patch is available to prevent exploitation via crafted wav files. As a temporary workaround, avoid using sample rates of zero in the WavpackSetConfiguration64 function to minimize the risk of resource exhaustion.

Fix

DoS

Infinite Loop

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-835

Related Identifiers

ALSA-2020:1581
ALT-PU-2020-1107
ALT-PU-2020-2916
ALT-PU-2023-1392
BDU:2021-03452
CESA-2020_1581
CVE-2018-19840
DLA-2525-1
MGASA-2019-0045
OPENSUSE-SU-2019:1145-1
OPENSUSE-SU-2019_1145-1
OPENSUSE-SU-2021:0153-1
OPENSUSE-SU-2021:0154-1
OPENSUSE-SU-2021_0153-1
OPENSUSE-SU-2021_0154-1
OPENSUSE-SU-2024:11505-1
RHSA-2020:1581
RHSA-2020_1581
RLSA-2020:1581
SUSE-SU-2019:0772-1
SUSE-SU-2019:13990-1
SUSE-SU-2019_0772-1
SUSE-SU-2019_13990-1
SUSE-SU-2020:2727-1
SUSE-SU-2020_2727-1
SUSE-SU-2021:0186-1
USN-3839-1

Affected Products

Alt Linux
Almalinux
Centos
Red Hat
Rocky Linux
Suse
Ubuntu
Wavpack