Lucene search
Veracode Vulnerability DatabaseVERACODE:6151HistoryApr 19, 2018 - 6:11 a.m.
Denial Of Service (DoS) Through Out-of-Memory (OOM)
2018-04-1906:11:26
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
0.001 Low
EPSS
Percentile
44.1%
libid3tag.so is vulnerable to denial of service (DoS) through out-of-memory (OOM) issues. The vulnerability exists in id3_utf16_deserialize() of utf16.c when parsing ID3v2 tags encoded in UTF-16 that contains an odd number of bytes, which causes an infinite loop of allocating memory.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libid3tag.so | eq | 0.3.0 |
Related
cve
cve
CVE-2004-2779
2022-10-03 16:14:13
cvelist
cvelist
CVE-2004-2779
2022-10-03 16:14:13
cbl_mariner
cbl_mariner
CVE-2004-2779 affecting package libid3tag 0.15.1b-33
2024-06-29 03:09:38
nvd
nvd
CVE-2004-2779
2018-02-20 21:29:00
debiancve
debiancve
CVE-2004-2779
2022-10-03 16:14:13
nessus
nessus
Fedora 27 : libid3tag (2018-e06468b832)
2018-04-10 00:00:00
Fedora 28 : mingw-libid3tag (2018-2926fd93f4)
2019-01-03 00:00:00
Fedora 27 : mingw-libid3tag (2018-4e26c06aef)
2018-04-24 00:00:00
openvas
openvas
Fedora Update for mingw-libid3tag FEDORA-2018-4e26c06aef
2018-04-25 00:00:00
Fedora Update for libid3tag FEDORA-2018-e06468b832
2018-04-10 00:00:00
Mageia: Security Advisory (MGASA-2018-0223)
2022-01-28 00:00:00
fedora
fedora
[SECURITY] Fedora 28 Update: mingw-libid3tag-0.15.1b-24.fc28
2018-04-15 02:43:55
[SECURITY] Fedora 27 Update: mingw-libid3tag-0.15.1b-23.fc27
2018-04-23 15:51:28
[SECURITY] Fedora 28 Update: libid3tag-0.15.1b-28.fc28
2018-04-05 11:50:09
mageia
mageia
Updated libid3tag packages fix security vulnerabilities
2018-05-09 21:33:09