The ParseCaffHeaderConfig function of the cli/caff.c file of WavPack 5.1.0 allows a remote attacker to cause a denial-of-service (global buffer over-read), or possibly trigger a buffer overflow or incorrect memory allocation, via a maliciously crafted CAF file.
{ "vanir_signatures": [ { "digest": { "function_hash": "65974736832941771142983532158695998664", "length": 10621.0 }, "id": "CVE-2018-7254-4adccfbb", "source": "https://github.com/dbry/wavpack/commit/8e3fe45a7bac31d9a3b558ae0079e2d92a04799e", "signature_type": "Function", "signature_version": "v1", "target": { "file": "cli/caff.c", "function": "ParseCaffHeaderConfig" }, "deprecated": false }, { "digest": { "threshold": 0.9, "line_hashes": [ "103734139257666266790114732166434882531", "132514671851802742818781515179830767285", "23553130309135768262972612816126638277", "285785030741339450288288513156452007272", "309721483043546570610019007219125591967", "90606788858175673539884354297776969870", "324212681088054674715899777806389367458", "184056002496947916298744866033470286929", "205870033765345814083523704102798196514", "173264052074081947045248186260984135049", "73187520836497294548528159746549134991", "293326628077375735167179766738299492863", "106559693192409123926338703660992252085", "292276827250734055093359581648215800086", "23802399916585849439062280846893327709", "110982342991173375283270832315570903668" ] }, "id": "CVE-2018-7254-bb1a4088", "source": "https://github.com/dbry/wavpack/commit/8e3fe45a7bac31d9a3b558ae0079e2d92a04799e", "signature_type": "Line", "signature_version": "v1", "target": { "file": "cli/caff.c" }, "deprecated": false } ] }