{"id":"CVE-2018-7254","details":"The ParseCaffHeaderConfig function of the cli/caff.c file of WavPack 5.1.0 allows a remote attacker to cause a denial-of-service (global buffer over-read), or possibly trigger a buffer overflow or incorrect memory allocation, via a maliciously crafted CAF file.","modified":"2026-04-16T01:41:57.837243223Z","published":"2018-02-19T23:29:00.277Z","related":["SUSE-SU-2021:0186-1","openSUSE-SU-2021:0153-1","openSUSE-SU-2021:0154-1","openSUSE-SU-2024:11505-1"],"references":[{"type":"WEB","url":"http://packetstormsecurity.com/files/155743/Slackware-Security-Advisory-wavpack-Updates.html"},{"type":"WEB","url":"https://seclists.org/bugtraq/2019/Dec/37"},{"type":"ADVISORY","url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=889274"},{"type":"ADVISORY","url":"https://github.com/dbry/WavPack/commit/8e3fe45a7bac31d9a3b558ae0079e2d92a04799e"},{"type":"ADVISORY","url":"https://github.com/dbry/WavPack/issues/26"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/3578-1/"},{"type":"ADVISORY","url":"https://www.debian.org/security/2018/dsa-4125"},{"type":"ADVISORY","url":"https://www.exploit-db.com/exploits/44154/"},{"type":"REPORT","url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=889274"},{"type":"REPORT","url":"https://github.com/dbry/WavPack/issues/26"},{"type":"FIX","url":"https://github.com/dbry/WavPack/commit/8e3fe45a7bac31d9a3b558ae0079e2d92a04799e"},{"type":"ARTICLE","url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=889274"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/dbry/wavpack","events":[{"introduced":"0"},{"fixed":"8e3fe45a7bac31d9a3b558ae0079e2d92a04799e"}]}],"versions":["4.70.0","4.70.0-rc","4.75.0","4.75.0-rc","4.75.2","4.80.0","4.80.0-rc","5.0.0","5.0.0-alpha","5.0.0-alpha2","5.0.0-alpha3","5.0.0-alpha4","5.0.0-alpha5","5.1.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-7254.json","vanir_signatures":[{"target":{"function":"ParseCaffHeaderConfig","file":"cli/caff.c"},"source":"https://github.com/dbry/wavpack/commit/8e3fe45a7bac31d9a3b558ae0079e2d92a04799e","signature_version":"v1","id":"CVE-2018-7254-4adccfbb","digest":{"length":10621,"function_hash":"65974736832941771142983532158695998664"},"signature_type":"Function","deprecated":false},{"source":"https://github.com/dbry/wavpack/commit/8e3fe45a7bac31d9a3b558ae0079e2d92a04799e","deprecated":false,"id":"CVE-2018-7254-bb1a4088","digest":{"threshold":0.9,"line_hashes":["103734139257666266790114732166434882531","132514671851802742818781515179830767285","23553130309135768262972612816126638277","285785030741339450288288513156452007272","309721483043546570610019007219125591967","90606788858175673539884354297776969870","324212681088054674715899777806389367458","184056002496947916298744866033470286929","205870033765345814083523704102798196514","173264052074081947045248186260984135049","73187520836497294548528159746549134991","293326628077375735167179766738299492863","106559693192409123926338703660992252085","292276827250734055093359581648215800086","23802399916585849439062280846893327709","110982342991173375283270832315570903668"]},"signature_version":"v1","signature_type":"Line","target":{"file":"cli/caff.c"}}]}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}