A flaw was found in wavpack 5.1.0-2. Running 'wavpack -y poc.wav' with a maliciously crafted file could cause the application to crash, which may allow an attacker to perform a denial-of-service attack.
Created mingw-wavpack tracking bugs for this issue:
Affects: epel-7 [bug 1542551]
Created wavpack tracking bugs for this issue:
Affects: fedora-all [bug 1542552]
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):