Medium severity5.5NVD Advisory· Published Jul 11, 2019· Updated Jun 17, 2026
CVE-2019-1010315
CVE-2019-1010315
Description
WavPack 5.1 and earlier is affected by: CWE 369: Divide by Zero. The impact is: Divide by zero can lead to sudden crash of a software/service that tries to parse a .wav file. The component is: ParseDsdiffHeaderConfig (dsdiff.c:282). The attack vector is: Maliciously crafted .wav file. The fixed version is: After commit https://github.com/dbry/WavPack/commit/4c0faba32fddbd0745cbfaf1e1aeb3da5d35b9fc.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5- osv-coords3 versionspkg:rpm/almalinux/wavpackpkg:rpm/almalinux/wavpack-develpkg:rpm/opensuse/wavpack&distro=openSUSE%20Tumbleweed
< 5.1.0-15.el8+ 2 more
- (no CPE)range: < 5.1.0-15.el8
- (no CPE)range: < 5.1.0-15.el8
- (no CPE)range: < 5.4.0-1.6
Patches
Vulnerability mechanics
References
6- github.com/dbry/WavPack/commit/4c0faba32fddbd0745cbfaf1e1aeb3da5d35b9fcnvdPatchThird Party Advisory
- github.com/dbry/WavPack/issues/65nvdExploitIssue TrackingThird Party Advisory
- lists.debian.org/debian-lts-announce/2021/01/msg00013.htmlnvdMailing ListThird Party Advisory
- usn.ubuntu.com/4062-1/nvdThird Party Advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CFFFWIWALGQPKINRDW3PRGRD5LOLGZA/nvd
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BRWQNE3TH5UF64IKHKKHVCHJHUOVKJUH/nvd
News mentions
0No linked articles in our index yet.