240 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in the Frontend Taglib module in Liferay Portal 7.4.0 allows remote attackers to inject arbitrary web script or HTML into the management toolbar search via the keywords parameter...
SUSE: Security Advisory (SUSE-SU-2012:0743-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2019:1374-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2020:2968-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
The vulnerability of the TagLib::Ogg::FLAC::File::scan function in the TagLib library, which involves reading data beyond the permissible buffer limits, allows attackers to access confidential data.
The vulnerability of the TagLib::Ogg::FLAC::File::scan function in the TagLib library is related to reading data beyond the allowable buffer size. Exploiting this vulnerability could allow a malicious actor to gain access to confidential data...
The vulnerability of the rebuildAggregateFrames function in the library for reading and modifying metadata in audio files from TagLib allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.
The vulnerability of the rebuildAggregateFrames function in the library for reading and modifying metadata in audio files from TagLib is related to the unlimited loading of dangerous files. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its...
EulerOS 2.0 SP5 : taglib (EulerOS-SA-2020-2566)
According to the version of the taglib package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based...
Huawei EulerOS: Security Advisory for taglib (EulerOS-SA-2020-2566)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12 Security Update : taglib (SUSE-SU-2020:2968-1)
This update for taglib fixes the following issues : CVE-2018-11439: The TagLib::Ogg::FLAC::File::scan function allowed remote attackers to cause information disclosure heap-based buffer over-read via a crafted audio file bsc1096180. Note that Tenable Network Security has extracted the preceding...
NewStart CGSL CORE 5.05 / MAIN 5.05 : taglib Vulnerability (NS-SA-2020-0086)
The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has taglib packages installed that are affected by a vulnerability: - The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based buffer...
NewStart CGSL CORE 5.04 / MAIN 5.04 : taglib Vulnerability (NS-SA-2020-0056)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has taglib packages installed that are affected by a vulnerability: - The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based buffer...
Exploit for CVE-2019-2888
CVE-2019-2888 WebLogic EJBTaglibDescriptor XXE漏洞 https://www.oracle.com/security-alerts/cpuoct2019.html fernflower.jar weblogic.jar/weblogic/servlet/ejb2jsp/dd/EJBTaglibDescriptor.class ╭─root@jas502n /var ╰─ find ./ |grep EJBTaglibDescriptor ✔ 8388 18:32:43...
SUSE-SU-2020:2968-1 Security update for taglib
This update for taglib fixes the following issues: - CVE-2018-11439: The TagLib::Ogg::FLAC::File::scan function allowed remote attackers to cause information disclosure heap-based buffer over-read via a crafted audio file bsc1096180...
Amazon Linux 2 : taglib (ALAS-2020-1460)
The version of taglib installed on the remote host is prior to 1.8-8.20130218git. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2020-1460 advisory. The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause informatio...
Low: taglib
Issue Overview: The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based buffer over-read via a crafted audio file. CVE-2018-11439 Affected Packages: taglib Note: This advisory is applicable to Amazon Linux 2...
FreeBSD : taglib -- heap-based buffer over-read via a crafted audio file (d3f3e818-8d10-11ea-8668-e0d55e2a8bf9)
Webin security lab - dbapp security Ltd reports : The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based buffer over-read via a crafted audio file. C Tenable Network Security, Inc. The descriptive text and...
Scientific Linux Security Update : taglib on SL7.x x86_64 (20200407)
taglib: heap-based buffer over-read via a crafted audio file C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid135838; scriptversion"1.3"; scriptsetattributeattribute:"pluginmodificationdate", value:"2024/03/15";...
CentOS 7 : taglib (RHSA-2020:1175)
The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1175 advisory. - The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based buffer...
taglib security update
CentOS Errata and Security Advisory CESA-2020:1175 An update for taglib is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...
taglib security update
1.8-8.20130218git - Fixed OOB read when loading invalid ogg flac file Resolves: bz1585260...