Azure Linux 3.0 Security Update: libid3tag (CVE-2017-11550)

The version of libid3tag installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2017-11550 advisory. - The id3ucs4length function in ucs4.c in libid3tag 0.15.1b allows remote attackers to cause a denial of...

CVE-2017-11550 affecting package libid3tag for versions less than 0.16.3-7

CVE-2017-11550 affecting package libid3tag for versions less than 0.16.3-7. An upgraded version of the package is available that resolves this issue...

Linux Distros Unpatched Vulnerability : CVE-2017-11550

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The id3ucs4length function in ucs4.c in libid3tag 0.15.1b allows remote attackers to cause a denial of service NULL Pointer Dereference and application crash vi...

Advisory ROSA-SA-2025-2618

software: libid3tag 0.15.1b WASP: ROSA-CHROME packageevrstring: libid3tag-0.15.1b-24 CVE-ID: CVE-2017-11550 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in libid3tag allows remote attackers to cause a denial of service via a special mp3 file. CVE-STATUS: The vulnerability has been...

CVE-2017-11550 affecting package libid3tag 0.15.1b-33

CVE-2017-11550 affecting package libid3tag 0.15.1b-33. No patch is available currently...

RHEL 6 : libid3tag (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libid3tag: id3utf16deserialize misparses ID3v2 tags with an odd number of bytes resulting in an endless...

RHEL 7 : libid3tag (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libid3tag: Out of memory in id3fieldparse function in field.c CVE-2017-11551 - The id3ucs4length function...

RHEL 6 : libid3tag (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libid3tag: Out of memory in id3fieldparse function in field.c CVE-2017-11551 - The id3ucs4length function...

SUSE CVE-2017-11550

The id3ucs4length function in ucs4.c in libid3tag 0.15.1b allows remote attackers to cause a denial of service NULL Pointer Dereference and application crash via a crafted mp3 file...

Fedora 27 : mingw-libid3tag (2018-4e26c06aef)

Fix CVE-2017-11550 and CVE-2004-2779 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

Fedora 27 : libid3tag (2018-e06468b832)

Security fix for CVE-2004-2779 and CVE-2017-11550 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

Fedora Update for libid3tag FEDORA-2018-e06468b832

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED12 Security Update : libid3tag (SUSE-SU-2018:0722-1)

This update for libid3tag fixes the following issues : - CVE-2004-2779 CVE-2017-11551: Fixed id3utf16deserialize in utf16.c, which previously misparsed ID3v2 tags encoded in UTF-16 with an odd number of bytes, triggering an endless loop allocating memory until OOM leading to DoS. bsc1081959...

CVE-2017-11550

The id3ucs4length function in ucs4.c in libid3tag 0.15.1b allows remote attackers to cause a denial of service NULL Pointer Dereference and application crash via a crafted mp3 file...

CVE-2017-11550

The id3ucs4length function in ucs4.c in libid3tag 0.15.1b allows remote attackers to cause a denial of service NULL Pointer Dereference and application crash via a crafted mp3 file...

CVE-2017-11550

The id3ucs4length function in ucs4.c in libid3tag 0.15.1b allows remote attackers to cause a denial of service NULL Pointer Dereference and application crash via a crafted mp3 file...

CVE-2017-11550

The id3ucs4length function in ucs4.c in libid3tag 0.15.1b allows remote attackers to cause a denial of service NULL Pointer Dereference and application crash via a crafted mp3 file...

CVE-2017-11550

CVE-2017-11550 affects libid3tag, specifically the id3_ucs4_length function in ucs4.c of version 0.15.1b. The vulnerability allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted MP3 file. Connected documents indicate the issue impacts ...

CVE-2017-11550

The id3ucs4length function in ucs4.c in libid3tag 0.15.1b allows remote attackers to cause a denial of service NULL Pointer Dereference and application crash via a crafted mp3 file...