CVE-2018-19841
Published
CVSS v3
5.5
MEDIUM
CVSS v2
4.3
MEDIUM
Affected
1
PROJECT
Description
The function WavpackVerifySingleBlock in open_utils.c in libwavpack.a in WavPack through 5.1.0 allows attackers to cause a denial-of-service (out-of-bounds read and application crash) via a crafted WavPack Lossless Audio file, as demonstrated by wvunpack.
GitHub