Lucene search
K

11 matches found

OpenVAS
OpenVAS
•added 2022/01/28 12:0 a.m.•19 views

Mageia: Security Advisory (MGASA-2017-0249)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.01389EPSS
Exploits1References4
OpenVAS
OpenVAS
•added 2017/09/28 12:0 a.m.•24 views

Fedora Update for mpg123 FEDORA-2017-172410ec92

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6AI score0.01389EPSS
Exploits1References2
OpenVAS
OpenVAS
•added 2017/09/21 12:0 a.m.•26 views

Fedora Update for mpg123 FEDORA-2017-c89d94d812

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6AI score0.01389EPSS
Exploits1References2
Mageia
Mageia
•added 2017/08/08 8:24 p.m.•34 views

Updated mpg123 packages fix security vulnerabilities

The nexttext function in src/libmpg123/id3.c in mpg123 1.24.0 allows remote attackers to cause a denial of service buffer over-read via a crafted mp3 file CVE-2017-9545. Invalid read of size 1 in ID3v2 parser due to forgotten offset from the frame flag bytes CVE-2017-10683. Extend pow tables for...

5.5CVSS3.9AI score0.01167EPSS
Exploits1References2
OSV
OSV
•added 2017/07/10 3:29 a.m.•17 views

CVE-2017-11126

The IIIistereo function in libmpg123/layer3.c in mpg123 through 1.25.1 allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted audio file that is mishandled in the code for the "blocktype != 2" case, a similar issue to CVE-2017-9870...

5.5CVSS7AI score
Exploits0References2
OSV
OSV
•added 2017/07/10 3:29 a.m.•2 views

UBUNTU-CVE-2017-11126

The IIIistereo function in libmpg123/layer3.c in mpg123 through 1.25.1 allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted audio file that is mishandled in the code for the "blocktype != 2" case, a similar issue to CVE-2017-9870...

5.5CVSS6.5AI score0.01389EPSS
Exploits0References5
CVE
CVE
•added 2017/07/10 3:0 a.m.•87 views

CVE-2017-11126

CVE-2017-11126 affects mpg123 (libmpg123) through version 1.25.1. The III_i_stereo function in libmpg123/layer3.c mishandles the block_type != 2 code path, enabling a crafted audio file to trigger a buffer over-read and an application crash (denial of service). The available connected documents c...

5.5CVSS6.2AI score0.01389EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
•added 2017/07/10 3:0 a.m.•22 views

CVE-2017-11126

The IIIistereo function in libmpg123/layer3.c in mpg123 through 1.25.1 allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted audio file that is mishandled in the code for the "blocktype != 2" case, a similar issue to CVE-2017-9870...

5.5CVSS6.2AI score0.01389EPSS
Exploits0
Prion
Prion
•added 2017/06/25 7:29 p.m.•18 views

Design/Logic Flaw

The IIIistereo function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted audio file that is mishandled in the code for the "blocktype == 2" case, a similar...

4.3CVSS7.2AI score0.01389EPSS
Exploits0References2Affected Software1
NVD
NVD
•added 2017/06/25 7:29 p.m.•24 views

CVE-2017-9870

The IIIistereo function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted audio file that is mishandled in the code for the "blocktype == 2" case, a similar...

5.5CVSS5.8AI score0.0121EPSS
Exploits0References2
CVE
CVE
•added 2017/06/25 7:0 p.m.•81 views

CVE-2017-9870

CVE-2017-9870 concerns the III_i_stereo function in layer3.c of mpglib (used by mpglib’s libmpgdecoder.a in LAME 3.99.5 and similar products). The vulnerability enables a remote attacker to trigger a buffer over-read, causing an application crash via a crafted MP3 file, specifically related to th...

5.5CVSS5.7AI score0.0121EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder