buildroot/package/wavpack
Fabrice Fontaine a9bff8a0b0 package/wavpack: fix CVE-2021-44269
An out of bounds read was found in Wavpack 5.4.0 in processing *.WAV
files. This issue triggered in function WavpackPackSamples of file
src/pack_utils.c, tainted variable cnt is too large, that makes pointer
sptr read beyond heap bound.

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
2022-03-18 22:38:07 +01:00
..
0001-issue-110-sanitize-DSD-file-types-for-invalid-lengths.patch
Config.in
wavpack.hash
wavpack.mk