CVE-2016-10170

Priority
Low
Description
The WriteCaffHeader function in cli/caff.c in Wavpack before 5.1.0 allows
remote attackers to cause a denial of service (out-of-bounds read) via a
crafted WV file.
References
Bugs
Notes
 leosilva> code affected not present in trusty or xenial
Package
Upstream:released (5.0.0-2,5.1.0)
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needed)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected
Ubuntu 16.04 LTS (Xenial Xerus):not-affected
Ubuntu 17.10 (Artful Aardvark):not-affected (5.0.0-2)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (5.0.0-2)
Patches:
Upstream:https://github.com/dbry/WavPack/commit/4bc05fc490b66ef2d45b1de26abf1455b486b0dc
More Information

Updated: 2018-02-12 16:14:13 UTC (commit 14172)