A vulnerability was found in wavpack. There is a heap out of bounds read in read_new_config_info / open_utils.c. A maliciously crafted file could cause the application to crash. Upstream bug: https://sourceforge.net/p/wavpack/mailman/message/35561951/ Upstream patch: https://github.com/dbry/WavPack/commit/4bc05fc490b66ef2d45b1de26abf1455b486b0dc References: http://seclists.org/oss-sec/2017/q1/221
Created mingw-wavpack tracking bugs for this issue: Affects: epel-7 [bug 1417860] Affects: fedora-all [bug 1417863] Created wavpack tracking bugs for this issue: Affects: epel-5 [bug 1417862] Affects: fedora-all [bug 1417861]
1 . I'm not authorized to access bug #1417854. 2 . instead open 6 bugs can you resume what we need todo on Fedoras , I'm planing if I got time to update wavpack on rawhide for F26 . this are 4 cves ? CVE-2016-10169 CVE-2016-10170 CVE-2016-10171 CVE-2016-10172 but is all fix in same patch . https://github.com/dbry/WavPack/commit/4bc05fc490b66ef2d45b1de26abf1455b486b0dc
this patch is not applicable to the current version 4.80.0 [1] not even exist the function read_new_config_info only read_config_info and is quite different in src/open_utils.c https://apps.fedoraproject.org/packages/mingw-wavpack https://apps.fedoraproject.org/packages/wavpack