4.3
CVE-2012-1107
- EPSS 1.83%
- Veröffentlicht 06.09.2012 18:55:00
- Zuletzt bearbeitet 16.06.2026 23:39:02
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
LoginThe analyzeCurrent function in ape/apeproperties.cpp in TagLib 1.7 and earlier allows context-dependent attackers to cause a denial of service (application crash) via a crafted sampleRate in an ape file, which triggers a divide-by-zero error.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Scott Wheeler ≫ Taglib Version <= 1.7
Scott Wheeler ≫ Taglib Version1.0
Scott Wheeler ≫ Taglib Version1.1
Scott Wheeler ≫ Taglib Version1.2
Scott Wheeler ≫ Taglib Version1.3
Scott Wheeler ≫ Taglib Version1.3.1
Scott Wheeler ≫ Taglib Version1.4
Scott Wheeler ≫ Taglib Version1.5
Scott Wheeler ≫ Taglib Version1.6
Scott Wheeler ≫ Taglib Version1.6.1
Scott Wheeler ≫ Taglib Version1.6.2
Scott Wheeler ≫ Taglib Version1.6.3
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.83% | 0.76 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:N/A:P
|
http://mail.kde.org/pipermail/taglib-devel/2012-March/002186.html
http://mail.kde.org/pipermail/taglib-devel/2012-March/002187.html
http://osvdb.org/79814
http://secunia.com/advisories/48211
http://secunia.com/advisories/48792
http://secunia.com/advisories/49688
http://www.gentoo.org/security/en/glsa/glsa-201206-16.xml
http://www.openwall.com/lists/oss-security/2012/03/05/19
http://www.securityfocus.com/bid/52284
https://exchange.xforce.ibmcloud.com/vulnerabilities/73666
https://github.com/taglib/taglib/commit/77d61c6eca4d08b9b025738acf6b926cc750db23