13 matches found
EUVD-2017-4334
Malware in sbrugna...
gstreamer1-plugins-base: ID3v2 parser out-of-bounds read and NULL-pointer dereference
A flaw was found in the GStreamer library. An Out-of-bounds read and NULL-pointer dereference in ID3v2 parser can lead to crashes for certain input files. This may result in a crash of the application...
openSUSE Security Update : mpg123 (openSUSE-2017-1035)
This update for mpg123 fixes the following issues : - Update to version 1.25.6 - Hotfix for bug 255: Overflow reading frame data bits in layer II decoding. Now, all-zero data is returned if the frame data is exhausted. This might have a slight impact on performance, but not easily measurable so...
CVE-2017-12797
Integer overflow in the INT123parsenewid3 function in the ID3 parser in mpg123 before 1.25.5 on 32-bit platforms allows remote attackers to cause a denial of service via a crafted file, which triggers a heap-based buffer overflow...
Integer overflow
Integer overflow in the INT123parsenewid3 function in the ID3 parser in mpg123 before 1.25.5 on 32-bit platforms allows remote attackers to cause a denial of service via a crafted file, which triggers a heap-based buffer overflow...
UBUNTU-CVE-2017-12797
Integer overflow in the INT123parsenewid3 function in the ID3 parser in mpg123 before 1.25.5 on 32-bit platforms allows remote attackers to cause a denial of service via a crafted file, which triggers a heap-based buffer overflow...
CVE-2017-12797
Integer overflow in the INT123parsenewid3 function in the ID3 parser in mpg123 before 1.25.5 on 32-bit platforms allows remote attackers to cause a denial of service via a crafted file, which triggers a heap-based buffer overflow...
DEBIAN-CVE-2017-12797
Integer overflow in the INT123parsenewid3 function in the ID3 parser in mpg123 before 1.25.5 on 32-bit platforms allows remote attackers to cause a denial of service via a crafted file, which triggers a heap-based buffer overflow...
CVE-2017-12797
Integer overflow in the INT123parsenewid3 function in the ID3 parser in mpg123 before 1.25.5 on 32-bit platforms allows remote attackers to cause a denial of service via a crafted file, which triggers a heap-based buffer overflow...
CVE-2017-12797
Integer overflow in the INT123parsenewid3 function in the ID3 parser in mpg123 before 1.25.5 on 32-bit platforms allows remote attackers to cause a denial of service via a crafted file, which triggers a heap-based buffer overflow...
CVE-2017-12797
CVE-2017-12797 affects mpg123’s ID3 parser (INT123_parse_new_id3) on 32-bit platforms, where input crafted MP3 metadata can trigger a heap-based buffer overflow and cause denial of service. Public sources corroborate this issue across multiple advisories and OS feeds, with patched versions releas...
CVE-2017-12797
Integer overflow in the INT123parsenewid3 function in the ID3 parser in mpg123 before 1.25.5 on 32-bit platforms allows remote attackers to cause a denial of service via a crafted file, which triggers a heap-based buffer overflow...
CVE-2016-3920
id3/ID3.cpp in libstagefright in mediaserver in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-10-01, and 7.0 before 2016-10-01 allows remote attackers to cause a denial of service device hang or reboot via a crafted file, aka internal bug 30744884...