First published: Mon Dec 31 2018(Updated: )
ok-file-formats through 2018-10-16 has a heap-based buffer overflow in the ok_wav_decode_ms_adpcm_data function in ok_wav.c.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Ok-file-formats Project Ok-file-formats | <=20181016 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this vulnerability is CVE-2018-20616.
The severity level of CVE-2018-20616 is high.
The affected software for CVE-2018-20616 is Ok-file-formats Project Ok-file-formats up to and including version 20181016.
The CWE ID for this vulnerability is CWE-119 and CWE-787.
Yes, a fix is available for CVE-2018-20616. It is recommended to update to a version of Ok-file-formats Project Ok-file-formats after 20181016.