Vulnerabilities > Wavpack > Wavpack > 5.4.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-07-19 | CVE-2022-2476 | NULL Pointer Dereference vulnerability in multiple products A null pointer dereference bug was found in wavpack-5.4.0 The results from the ASAN log: AddressSanitizer:DEADLYSIGNAL ===================================================================84257==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 (pc 0x561b47a970c6 bp 0x7fff13952fb0 sp 0x7fff1394fca0 T0) ==84257==The signal is caused by a WRITE memory access. | 5.5 |
2022-03-10 | CVE-2021-44269 | Out-of-bounds Read vulnerability in multiple products An out of bounds read was found in Wavpack 5.4.0 in processing *.WAV files. | 5.5 |