Lucene search
Libmp3Splt Security Vulnerabilities - February
cve
plugins/ogg.c in Libmp3splt 0.9.2 calls the libvorbis vorbis_block_clear function with uninitialized data upon detection of invalid input, which allows remote attackers to cause a denial of service (application crash) via a crafted file.
5CVSS
5AI Score
0.001EPSS
2017-10-09 05:29 AM
30
cve
The splt_cue_export_to_file function in cue.c in libmp3splt 0.9.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file.
5.5CVSS
5.3AI Score
0.003EPSS
2017-03-01 03:59 PM
26