MiracleLinux 7 : taglib-1.8-8.20130218git.el7 (AXSA:2020-4549:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-4549:01 advisory. taglib: heap-based buffer over-read via a crafted audio file CVE-2018-11439 Tenable has extracted the preceding description block directly from the...

Linux Distros Unpatched Vulnerability : CVE-2018-11439

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based buffer over-re...

RHEL 6 : taglib (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - taglib: Incorrect cast in rebuildAggregateFrames function CVE-2017-12678 - The parse function in...

CVE-2018-11439 affecting package taglib for versions less than 1.13.1-1

CVE-2018-11439 affecting package taglib for versions less than 1.13.1-1. An upgraded version of the package is available that resolves this issue...

Oracle Linux 7 : taglib (ELSA-2020-1175)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-1175 advisory. 1.8-8.20130218git - Fixed OOB read when loading invalid ogg flac file Resolves: bz1585260 Tenable has extracted the preceding description block directly from th...

Mageia: Security Advisory (MGASA-2018-0300)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DLA-2772-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2019:1374-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2020:2968-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP5 : taglib (EulerOS-SA-2020-2566)

According to the version of the taglib package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based...

SUSE SLES12 Security Update : taglib (SUSE-SU-2020:2968-1)

This update for taglib fixes the following issues : CVE-2018-11439: The TagLib::Ogg::FLAC::File::scan function allowed remote attackers to cause information disclosure heap-based buffer over-read via a crafted audio file bsc1096180. Note that Tenable Network Security has extracted the preceding...

NewStart CGSL CORE 5.05 / MAIN 5.05 : taglib Vulnerability (NS-SA-2020-0086)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has taglib packages installed that are affected by a vulnerability: - The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based buffer...

Amazon Linux 2 : taglib (ALAS-2020-1460)

The version of taglib installed on the remote host is prior to 1.8-8.20130218git. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2020-1460 advisory. The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause informatio...

Low: taglib

Issue Overview: The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based buffer over-read via a crafted audio file. CVE-2018-11439 Affected Packages: taglib Note: This advisory is applicable to Amazon Linux 2...

Scientific Linux Security Update : taglib on SL7.x x86_64 (20200407)

taglib: heap-based buffer over-read via a crafted audio file C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid135838; scriptversion"1.3"; scriptsetattributeattribute:"pluginmodificationdate", value:"2024/03/15";...

CentOS 7 : taglib (RHSA-2020:1175)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1175 advisory. - The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based buffer...

taglib security update

CentOS Errata and Security Advisory CESA-2020:1175 An update for taglib is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...

RHEL 7 : taglib (RHSA-2020:1175)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1175 advisory. TagLib is a library for reading and editing the meta-data of different audio formats. Security Fixes: taglib: heap-based buffer over-read via a craft...

Huawei EulerOS: Security Advisory for taglib (EulerOS-SA-2019-1662)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP3 : taglib (EulerOS-SA-2019-2672)

According to the version of the taglib package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based...