Lucene search
Ubuntu.comUB:CVE-2017-10683HistoryJun 29, 2017 - 12:00 a.m.
CVE-2017-10683
2017-06-2900:00:00
ubuntu.com
ubuntu.com
7
0.002 Low
EPSS
Percentile
52.1%
In mpg123 1.25.0, there is a heap-based buffer over-read in the
convert_latin1 function in libmpg123/id3.c. A crafted input will lead to a
remote denial of service attack.
Bugs
Notes
| Author | Note |
|---|---|
| ratliff | reproducer doesn’t crash on trusty |
Related
debian
debian
[SECURITY] [DLA 1017-1] mpg123 security update
2017-07-08 08:58:32
nessus
nessus
Fedora 27 : mpg123 (2017-12794057a6)
2018-01-15 00:00:00
openSUSE Security Update : mpg123 (openSUSE-2017-1139)
2017-10-11 00:00:00
Fedora 25 : mpg123 (2017-172410ec92)
2017-09-29 00:00:00
cvelist
cvelist
CVE-2017-10683
2022-10-03 16:23:24
prion
prion
Heap overflow
2017-06-29 23:29:00
cve
cve
CVE-2017-10683
2017-06-29 23:29:00
osv
osv
mpg123 - security update
2017-07-08 00:00:00
debiancve
debiancve
CVE-2017-10683
2017-06-29 23:29:00
openvas
openvas
Debian: Security Advisory (DLA-1017-1)
2018-02-04 00:00:00
Mageia: Security Advisory (MGASA-2017-0249)
2022-01-28 00:00:00
Fedora Update for mpg123 FEDORA-2017-c89d94d812
2017-09-21 00:00:00
mageia
mageia
Updated mpg123 packages fix security vulnerabilities
2017-08-08 23:24:42
fedora
fedora
[SECURITY] Fedora 26 Update: mpg123-1.25.6-1.fc26
2017-09-20 22:55:47
[SECURITY] Fedora 25 Update: mpg123-1.25.6-1.fc25
2017-09-22 23:24:35
[SECURITY] Fedora 27 Update: mpg123-1.25.6-1.fc27
2017-09-30 07:36:45