Advisory ROSA-SA-2026-3302

Project: libid3tag 0.15.1b Operating System: ROSA-CHROME Unaffected versions: = libid3tag-0.15.1b-25 Affected versions: libid3tag-0.15.1b-25 CVE-ID: CVE-2004-2779 BDU-ID: None CVE-Crit: HIGH CVE-DESCRIPTION: A vulnerability exists in the id3utf16deserialize function in the utf16.c library of...

Azure Linux 3.0 Security Update: libid3tag (CVE-2017-11551)

The version of libid3tag installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2017-11551 advisory. - The id3fieldparse function in field.c in libid3tag 0.15.1b allows remote attackers to cause a denial of...

Azure Linux 3.0 Security Update: libid3tag (CVE-2017-11550)

The version of libid3tag installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2017-11550 advisory. - The id3ucs4length function in ucs4.c in libid3tag 0.15.1b allows remote attackers to cause a denial of...

Azure Linux 3.0 Security Update: libid3tag (CVE-2004-2779)

The version of libid3tag installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2004-2779 advisory. - id3utf16deserialize in utf16.c in libid3tag through 0.15.1b misparses ID3v2 tags encoded in UTF-16 with an...

EUVD-2017-3166

Malware in sbrugna...

EUVD-2008-2106

Malware in sbrugna...

EUVD-2017-3167

Malware in sbrugna...

CVE-2017-11551 affecting package libid3tag for versions less than 0.16.3-7

CVE-2017-11551 affecting package libid3tag for versions less than 0.16.3-7. An upgraded version of the package is available that resolves this issue...

CVE-2017-11550 affecting package libid3tag for versions less than 0.16.3-7

CVE-2017-11550 affecting package libid3tag for versions less than 0.16.3-7. An upgraded version of the package is available that resolves this issue...

CVE-2004-2779 affecting package libid3tag for versions less than 0.16.3-7

CVE-2004-2779 affecting package libid3tag for versions less than 0.16.3-7. An upgraded version of the package is available that resolves this issue...

The id3_ucs4_length function in ucs4.c in libid3tag 0.15.1b allows remote attackers to cause a denial of service

...

The id3_field_parse function in field.c in libid3tag 0.15.1b allows remote attackers to cause a denial of service

...

Advisory ROSA-SA-2025-2618

software: libid3tag 0.15.1b WASP: ROSA-CHROME packageevrstring: libid3tag-0.15.1b-24 CVE-ID: CVE-2017-11550 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in libid3tag allows remote attackers to cause a denial of service via a special mp3 file. CVE-STATUS: The vulnerability has been...

CVE-2004-2779 affecting package libid3tag 0.15.1b-33

CVE-2004-2779 affecting package libid3tag 0.15.1b-33. No patch is available currently...

CVE-2017-11550 affecting package libid3tag 0.15.1b-33

CVE-2017-11550 affecting package libid3tag 0.15.1b-33. No patch is available currently...

CVE-2017-11551 affecting package libid3tag 0.15.1b-33

CVE-2017-11551 affecting package libid3tag 0.15.1b-33. No patch is available currently...

OPENSUSE-SU-2024:10454-1 libid3tag-devel-0.15.1b-185.6 on GA media

These are all security issues fixed in the libid3tag-devel-0.15.1b-185.6 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:10948-1 libid3tag-devel-0.15.1b-188.15 on GA media

These are all security issues fixed in the libid3tag-devel-0.15.1b-188.15 package on the GA media of openSUSE Tumbleweed...

RHEL 6 : libid3tag (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libid3tag: id3utf16deserialize misparses ID3v2 tags with an odd number of bytes resulting in an endless...

RHEL 7 : libid3tag (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libid3tag: Out of memory in id3fieldparse function in field.c CVE-2017-11551 - The id3ucs4length function...