OSV-2025-124

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/wavpack/OSV-2025-124.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2025-124
Published
2025-02-15T00:09:23.967012Z
Modified
2025-02-15T00:09:23.967345Z
Summary
Use-of-uninitialized-value in get_word
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=396172336

Crash type: Use-of-uninitialized-value
Crash state:
get_word
unpack_samples
unpack_samples_worker_thread
References

Affected packages

OSS-Fuzz / wavpack

Package

Name
wavpack
Purl
pkg:generic/wavpack

Affected ranges

Type
GIT
Repo
https://github.com/dbry/WavPack.git
Events
Introduced
b7b796375293defeae340e83d066efa33fa0d2f3
Fixed
c3fd0514a45fb79096105c64205ae98cd607755e

Ecosystem specific 

{
    "severity": "MEDIUM"
}

Database specific

source 
"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/wavpack/OSV-2025-124.yaml"
introduced_range 
"22550559ef745b5bcc6117638cb3add2bc01b82c:0b99613e30cdb85475c5b77ef50a4bf10d79f041"