CVE-2017-14634

In libsndfile 1.0.28, a divide-by-zero error exists in the function double64init in double64.c, which may lead to DoS when playing a crafted audio file...

CVE-2017-14634

In libsndfile 1.0.28, a divide-by-zero error exists in the function double64init in double64.c, which may lead to DoS when playing a crafted audio file...

CVE-2017-14633

In Xiph.Org libvorbis 1.3.5, an out-of-bounds array read vulnerability exists in the function mapping0forward in mapping0.c, which may lead to DoS when operating on a crafted audio file with vorbisanalysis...

DEBIAN-CVE-2017-12912

The "mpglibDBL/layer3.c" file in MP3Gain 1.5.2.r2 has a vulnerability which results in a read access violation when opening a crafted MP3 file...

Null pointer dereference

In TagLib 1.11.1, the rebuildAggregateFrames function in id3v2framefactory.cpp has a pointer to cast vulnerability, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted audio file...

CVE-2017-12678

In TagLib 1.11.1, the rebuildAggregateFrames function in id3v2framefactory.cpp has a pointer to cast vulnerability, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted audio file...

CVE-2017-12678

In TagLib 1.11.1, the rebuildAggregateFrames function in id3v2framefactory.cpp has a pointer to cast vulnerability, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted audio file...

AZL-7379 CVE-2017-12678 affecting package taglib for versions less than 1.13.1-1

In TagLib 1.11.1, the rebuildAggregateFrames function in id3v2framefactory.cpp has a pointer to cast vulnerability, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted audio file...

CVE-2017-12678

In TagLib 1.11.1, the rebuildAggregateFrames function in id3v2framefactory.cpp has a pointer to cast vulnerability, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted audio file...

CVE-2017-12678

TagLib 1.11.1 contains a vulnerability in rebuildAggregateFrames within id3v2framefactory.cpp that can be triggered by a crafted audio file, enabling remote denial of service and potentially other impact. Affected component: TagLib, specifically the id3v2framefactory.cpp path. Root cause: pointer...

CVE-2017-12678

In TagLib 1.11.1, the rebuildAggregateFrames function in id3v2framefactory.cpp has a pointer to cast vulnerability, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted audio file...

CVE-2017-12678

In TagLib 1.11.1, the rebuildAggregateFrames function in id3v2framefactory.cpp has a pointer to cast vulnerability, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted audio file...

Xiph.Org libao '_tokenize_matrix' function denial of service vulnerability

Xiph.Org libao is a cross-platform audio library capable of outputting audio on a variety of different platforms. A security vulnerability exists in the 'tokenizematrix' function of the audioout.c file in Xiph.Org libao version 1.2.0. A remote attacker can exploit this vulnerability to cause a...

libid3tag 'id3_field_parse' Function Denial of Service Vulnerability

libid3tag is the ID3 tag manipulation library bundled with the MPEG audio decoder MAD. A security vulnerability exists in the 'id3fieldparse' function of the field.c file in libid3tag version 0.15.1b. A remote attacker can exploit this vulnerability to cause a denial of service via a specially...

gstreamer-plugins-base: Floating point exception in gst_riff_create_audio_caps

The gstriffcreateaudiocaps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service floating point exception and crash via a crafted ASF file...

gstreamer-plugins-good: Invalid memory read in gst_aac_parse_sink_setcaps

The gstaacparsesinksetcaps function in gst/audioparsers/gstaacparse.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service invalid memory read and crash via a crafted audio file...

DEBIAN-CVE-2017-11552

mpg321.c in mpg321 0.3.2-1 does not properly manage memory for use with libmad 0.15.1b, which allows remote attackers to cause a denial of service memory corruption seen in a crash in the maddecoderrun function in decoder.c in libmad via a crafted MP3 file...

UBUNTU-CVE-2017-11552

mpg321.c in mpg321 0.3.2-1 does not properly manage memory for use with libmad 0.15.1b, which allows remote attackers to cause a denial of service memory corruption seen in a crash in the maddecoderrun function in decoder.c in libmad via a crafted MP3 file...

ALPINE-CVE-2017-11552

mpg321.c in mpg321 0.3.2-1 does not properly manage memory for use with libmad 0.15.1b, which allows remote attackers to cause a denial of service memory corruption seen in a crash in the maddecoderrun function in decoder.c in libmad via a crafted MP3 file...

AZL-7262 CVE-2017-11550 affecting package libid3tag 0.15.1b-33

The id3ucs4length function in ucs4.c in libid3tag 0.15.1b allows remote attackers to cause a denial of service NULL Pointer Dereference and application crash via a crafted mp3 file...