Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2012-1107 | 1 Scott Wheeler | 1 Taglib | 2017-08-28 | 4.3 MEDIUM | N/A |
The analyzeCurrent function in ape/apeproperties.cpp in TagLib 1.7 and earlier allows context-dependent attackers to cause a denial of service (application crash) via a crafted sampleRate in an ape file, which triggers a divide-by-zero error. | |||||
CVE-2012-1108 | 1 Scott Wheeler | 1 Taglib | 2017-08-28 | 4.3 MEDIUM | N/A |
The parse function in ogg/xiphcomment.cpp in TagLib 1.7 and earlier allows remote attackers to cause a denial of service (crash) via a crafted vendorLength field in an ogg file. | |||||
CVE-2012-1584 | 1 Scott Wheeler | 1 Taglib | 2017-08-28 | 4.3 MEDIUM | N/A |
Integer overflow in the mid function in toolkit/tbytevector.cpp in TagLib 1.7 and earlier allows context-dependent attackers to cause a denial of service (application crash) via a crafted file header field in a media file, which triggers a large memory allocation. |