OSV-2020-1006

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/wavpack/OSV-2020-1006.yaml

Published

2020-07-22T21:49:39.626805Z

Modified

2022-04-13T03:04:42.381416Z

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19928

Crash type: Use-of-uninitialized-value
Crash state:
decimate_dsd_run
WavpackUnpackSamples
WavpackSeekSample64

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19928

Affected packages

OSS-Fuzz / wavpack

Package

Name: wavpack

Affected ranges

Type: GIT
Repo: https://github.com/dbry/WavPack.git
Events: Introduced

348ff60b489e731ffd046f837500313499623e3e

Fixed

db878b73e76c14842e99ad05aed9338d495703c0

Ecosystem specific

{
    "severity": "MEDIUM",
    "introduced_range": "unknown:348ff60b489e731ffd046f837500313499623e3e",
    "fixed_range": "348ff60b489e731ffd046f837500313499623e3e:db878b73e76c14842e99ad05aed9338d495703c0"
}