A vulnerability was found in wavpack. There is a global buffer overread in read_code / read_words.c. A maliciously crafted file could cause the application to crash.
Created mingw-wavpack tracking bugs for this issue:
Affects: epel-7 [bug 1417860]
Affects: fedora-all [bug 1417863]
Created wavpack tracking bugs for this issue:
Affects: epel-5 [bug 1417862]
Affects: fedora-all [bug 1417861]