The Wave_read._read_fmt_chunk function in Lib/wave.py in Python through 3.6.4 does not ensure a nonzero channel value, which allows attackers to cause a denial of service (divide-by-zero and exception) via a crafted wav format audio file. NOTE: the vendor disputes this issue because Python applications need to be prepared to handle a wide variety of exceptions.
The product divides a value by zero.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Python | Python | * | 3.6.4 (including) |
| Python2.7 | Ubuntu | artful | * |
| Python2.7 | Ubuntu | bionic | * |
| Python2.7 | Ubuntu | disco | * |
| Python2.7 | Ubuntu | eoan | * |
| Python2.7 | Ubuntu | esm-apps/focal | * |
| Python2.7 | Ubuntu | esm-apps/jammy | * |
| Python2.7 | Ubuntu | esm-infra-legacy/trusty | * |
| Python2.7 | Ubuntu | esm-infra/bionic | * |
| Python2.7 | Ubuntu | esm-infra/xenial | * |
| Python2.7 | Ubuntu | focal | * |
| Python2.7 | Ubuntu | groovy | * |
| Python2.7 | Ubuntu | hirsute | * |
| Python2.7 | Ubuntu | impish | * |
| Python2.7 | Ubuntu | jammy | * |
| Python2.7 | Ubuntu | kinetic | * |
| Python2.7 | Ubuntu | precise/esm | * |
| Python2.7 | Ubuntu | trusty | * |
| Python2.7 | Ubuntu | trusty/esm | * |
| Python2.7 | Ubuntu | xenial | * |
| Python3.4 | Ubuntu | esm-infra-legacy/trusty | * |
| Python3.4 | Ubuntu | trusty | * |
| Python3.4 | Ubuntu | trusty/esm | * |
| Python3.5 | Ubuntu | esm-infra-legacy/trusty | * |
| Python3.5 | Ubuntu | esm-infra/xenial | * |
| Python3.5 | Ubuntu | trusty | * |
| Python3.5 | Ubuntu | trusty/esm | * |
| Python3.5 | Ubuntu | xenial | * |
| Python3.6 | Ubuntu | artful | * |
| Python3.6 | Ubuntu | bionic | * |
| Python3.6 | Ubuntu | esm-infra/bionic | * |
| Python3.7 | Ubuntu | artful | * |
| Python3.7 | Ubuntu | bionic | * |
| Python3.7 | Ubuntu | disco | * |
| Python3.7 | Ubuntu | eoan | * |
| Python3.7 | Ubuntu | esm-apps/bionic | * |