14 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-12678
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In TagLib 1.11.1, the rebuildAggregateFrames function in id3v2framefactory.cpp has a pointer to cast vulnerability, which allows remote attackers to cause a...
RHEL 7 : taglib (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - taglib: Incorrect cast in rebuildAggregateFrames function CVE-2017-12678 Note that Nessus has not tested for this...
RHEL 6 : taglib (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - taglib: Incorrect cast in rebuildAggregateFrames function CVE-2017-12678 - The parse function in...
CVE-2017-12678 affecting package taglib for versions less than 1.13.1-1
CVE-2017-12678 affecting package taglib for versions less than 1.13.1-1. An upgraded version of the package is available that resolves this issue...
Mageia: Security Advisory (MGASA-2017-0286)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DLA-2772-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP2 : taglib (EulerOS-SA-2019-2482)
According to the versions of the taglib package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based...
Fedora 27 : mingw-taglib (2017-67f13dd1e1)
Security fix for CVE-2017-12678 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 7030...
Fedora 25 : taglib (2017-2317191f8a)
Fix for CVE-2017-12678 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenab...
Fedora 26 : taglib (2017-8d74f1c135)
Fix for CVE-2017-12678 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenab...
MGASA-2017-0286 Updated taglib packages fix security vulnerability
Denial of service vulnerability via specially crafted ID3v2 data CVE-2017-12678...
Updated taglib packages fix security vulnerability
Denial of service vulnerability via specially crafted ID3v2 data CVE-2017-12678...
CVE-2017-12678
TagLib 1.11.1 contains a vulnerability in rebuildAggregateFrames within id3v2framefactory.cpp that can be triggered by a crafted audio file, enabling remote denial of service and potentially other impact. Affected component: TagLib, specifically the id3v2framefactory.cpp path. Root cause: pointer...
CVE-2017-12678
In TagLib 1.11.1, the rebuildAggregateFrames function in id3v2framefactory.cpp has a pointer to cast vulnerability, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted audio file...