CVE-2023-30207

2023-07-0521:15:09

Debian Security Bug Tracker

security-tracker.debian.org

cve-2023-30207

divide by zero

kodi

home theater software

denial of service

crafted mp3 file

unix

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

10.3%

JSON

A divide by zero issue discovered in Kodi Home Theater Software 19.5 and earlier allows attackers to cause a denial of service via use of crafted mp3 file.

OSVersionArchitecturePackageVersionFilename
Debian12allkodi< 2:20.0~rc2+dfsg-2kodi_2:20.0~rc2+dfsg-2_all.deb
Debian11allkodi<= 2:19.1+dfsg2-2+deb11u1kodi_2:19.1+dfsg2-2+deb11u1_all.deb
Debian10allkodi< 2:17.6+dfsg1-4+deb10u1kodi_2:17.6+dfsg1-4+deb10u1_all.deb
Debian999allkodi< 2:20.0~rc2+dfsg-2kodi_2:20.0~rc2+dfsg-2_all.deb
Debian13allkodi< 2:20.0~rc2+dfsg-2kodi_2:20.0~rc2+dfsg-2_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	kodi	< 2:20.0~rc2+dfsg-2	kodi_2:20.0~rc2+dfsg-2_all.deb
Debian	11	all	kodi	<= 2:19.1+dfsg2-2+deb11u1	kodi_2:19.1+dfsg2-2+deb11u1_all.deb
Debian	10	all	kodi	< 2:17.6+dfsg1-4+deb10u1	kodi_2:17.6+dfsg1-4+deb10u1_all.deb
Debian	999	all	kodi	< 2:20.0~rc2+dfsg-2	kodi_2:20.0~rc2+dfsg-2_all.deb
Debian	13	all	kodi	< 2:20.0~rc2+dfsg-2	kodi_2:20.0~rc2+dfsg-2_all.deb