Lucene search
+L

48 matches found

Amazon
Amazon
added 2026/04/13 12:0 a.m.9 views

Low: tracker-miners

Issue Overview: A flaw was found in GNOME localsearch MP3 Extractor. When processing specially crafted MP3 files containing ID3v2.4 tags, a missing bounds check in the extractperformerstags function can lead to a heap buffer overflow. This vulnerability allows a remote attacker to cause a Denial ...

6.2AI score0.00246EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2026/04/13 12:0 a.m.8 views

Amazon Linux 2023 : tracker-miners (ALAS2023-2026-1580)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1580 advisory. A flaw was found in GNOME localsearch MP3 Extractor. When processing specially crafted MP3 files containing ID3v2.4 tags, a missing bounds check in the extractperformerstags function can lead ...

8.1CVSS6.2AI score0.00246EPSS
Exploits4References10
Fedora
Fedora
added 2026/03/23 1:8 a.m.6 views

[SECURITY] Fedora 43 Update: localsearch-3.10.2-2.fc43

Tinysparql is a powerful desktop-neutral first class object database, tag/metadata database and search tool. This package contains various miners and metadata extractors for tinysparql...

8.1CVSS5.8AI score0.00246EPSS
Exploits4
OpenVAS
OpenVAS
added 2026/03/23 12:0 a.m.4 views

Fedora: Security Advisory (FEDORA-2026-ba6641558a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS5.8AI score0.00246EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
added 2026/03/22 12:0 a.m.5 views

Fedora 43 : localsearch (2026-ba6641558a)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-ba6641558a advisory. Add a patch for several CVEs: CVE-2026-1764 - Heap Buffer Overflow in GNOME localsearch MP3 Extractor CVE-2026-1765 - Heap Buffer Overflow in GNOME...

8.1CVSS5.9AI score0.00246EPSS
Exploits4References5
OPENSUSE Linux
OPENSUSE Linux
added 2026/02/08 12:0 a.m.4 views

localsearch-3.10.2-2.1 on GA media (moderate)

localsearch-3.10.2-2.1 on GA media Announcement ID: openSUSE-SU-2026:10162-1 Rating: moderate Cross-References: CVE-2026-1764 CVE-2026-1765 CVE-2026-1766 CVE-2026-1767 CVSS scores: CVE-2026-1764 SUSE : 5.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:H CVE-2026-1764 SUSE : 5.2...

5.6CVSS5.3AI score0.00246EPSS
Exploits4
OSV
OSV
added 2026/02/07 12:0 a.m.3 views

OPENSUSE-SU-2026:10162-1 localsearch-3.10.2-2.1 on GA media

These are all security issues fixed in the localsearch-3.10.2-2.1 package on the GA media of openSUSE Tumbleweed...

8.1CVSS5.8AI score0.00246EPSS
Exploits4References4
UbuntuCve
UbuntuCve
added 2026/02/03 12:0 a.m.8 views

CVE-2026-1767

A flaw was found in the GNOME localsearch previously known as tracker-miners MP3 Extractor tracker-extract-mp3 component. A remote attacker could exploit this heap buffer overflow vulnerability by providing a specially crafted MP3 file containing malformed ID3 tags. This incorrect length...

8.1CVSS6.1AI score0.00246EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2026/02/03 12:0 a.m.6 views

CVE-2026-1766

A flaw was found in GNOME localsearch previously known as tracker-miners MP3 Extractor, specifically within the tracker-extract-mp3 component. This heap buffer overflow vulnerability occurs when processing specially crafted MP3 files containing malformed ID3v2.3 COMM Comment tags. An attacker cou...

6.1CVSS6.1AI score0.00158EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2026/02/03 12:0 a.m.4 views

CVE-2026-1764

A flaw was found in GNOME localsearch previously known as tracker-miners MP3 Extractor. When processing specially crafted MP3 files containing ID3v2.4 tags, a missing bounds check in the extractperformerstags function can lead to a heap buffer overflow. This vulnerability allows a remote attacker...

5.6CVSS6.3AI score0.00209EPSS
Exploits2References2
UbuntuCve
UbuntuCve
added 2026/02/03 12:0 a.m.5 views

CVE-2026-1765

A flaw was found in the tracker-extract-mp3 component of GNOME localsearch previously known as tracker-miners. This vulnerability, a heap buffer overflow, occurs when processing specially crafted MP3 files. A remote attacker could exploit this by providing a malicious MP3 file, leading to a Denia...

5.6CVSS6AI score0.00139EPSS
Exploits0References2
OSV
OSV
added 2026/02/03 12:0 a.m.10 views

UBUNTU-CVE-2026-1767

A flaw was found in the GNOME localsearch previously known as tracker-miners MP3 Extractor tracker-extract-mp3 component. A remote attacker could exploit this heap buffer overflow vulnerability by providing a specially crafted MP3 file containing malformed ID3 tags. This incorrect length...

8.1CVSS6.1AI score0.00246EPSS
Exploits1References3
OSV
OSV
added 2026/02/03 12:0 a.m.5 views

UBUNTU-CVE-2026-1766

A flaw was found in GNOME localsearch previously known as tracker-miners MP3 Extractor, specifically within the tracker-extract-mp3 component. This heap buffer overflow vulnerability occurs when processing specially crafted MP3 files containing malformed ID3v2.3 COMM Comment tags. An attacker cou...

6.1CVSS6.1AI score0.00158EPSS
Exploits1References3
OSV
OSV
added 2026/02/03 12:0 a.m.5 views

UBUNTU-CVE-2026-1765

A flaw was found in the tracker-extract-mp3 component of GNOME localsearch previously known as tracker-miners. This vulnerability, a heap buffer overflow, occurs when processing specially crafted MP3 files. A remote attacker could exploit this by providing a malicious MP3 file, leading to a Denia...

5.6CVSS6AI score0.00139EPSS
Exploits0References3
OSV
OSV
added 2026/02/03 12:0 a.m.4 views

UBUNTU-CVE-2026-1764

A flaw was found in GNOME localsearch previously known as tracker-miners MP3 Extractor. When processing specially crafted MP3 files containing ID3v2.4 tags, a missing bounds check in the extractperformerstags function can lead to a heap buffer overflow. This vulnerability allows a remote attacker...

5.6CVSS6.2AI score0.00209EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2026/02/03 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-1767

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the GNOME localsearch previously known as tracker-miners MP3 Extractor tracker- extract-mp3 component. A remote attacker could exploit this...

8.1CVSS5.8AI score0.00246EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/02/03 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-1764

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in GNOME localsearch previously known as tracker-miners MP3 Extractor. When processing specially crafted MP3 files containing ID3v2.4 tags, a...

5.6CVSS5.7AI score0.00209EPSS
Exploits2References4
RedhatCVE
RedhatCVE
added 2026/02/02 4:15 p.m.7 views

CVE-2026-1766

A flaw was found in GNOME localsearch previously known as tracker-miners MP3 Extractor, specifically within the tracker-extract-mp3 component. This heap buffer overflow vulnerability occurs when processing specially crafted MP3 files containing malformed ID3v2.3 COMM Comment tags. An attacker cou...

5.6CVSS5.3AI score0.00158EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/02/02 4:15 p.m.5 views

CVE-2026-1764

A flaw was found in GNOME localsearch previously known as tracker-miners MP3 Extractor. When processing specially crafted MP3 files containing ID3v2.4 tags, a missing bounds check in the extractperformerstags function can lead to a heap buffer overflow. This vulnerability allows a remote attacker...

5.6CVSS5.6AI score0.00209EPSS
Exploits2References3
RedhatCVE
RedhatCVE
added 2026/02/02 4:15 p.m.5 views

CVE-2026-1765

A flaw was found in the tracker-extract-mp3 component of GNOME localsearch previously known as tracker-miners. This vulnerability, a heap buffer overflow, occurs when processing specially crafted MP3 files. A remote attacker could exploit this by providing a malicious MP3 file, leading to a Denia...

5.6CVSS5.3AI score0.00139EPSS
Exploits0References3
Rows per page
Query Builder