CVE-2017-5665

Опубликовано: 01 мар. 2017

Источник: debian

EPSS Низкий

Описание

The splt_cue_export_to_file function in cue.c in libmp3splt 0.9.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
mp3splt	unfixed			package

Примечания

https://blogs.gentoo.org/ago/2017/01/29/mp3splt-null-pointer-dereference-in-splt_cue_export_to_file-cue-c
https://sourceforge.net/p/mp3splt/bugs/209/
No security impact, crash in CLI tool

EPSS

Процентиль: 48%

0.00245

Низкий

Связанные уязвимости

CVE-2017-5665

CVSS3: 5.5

ubuntu

почти 9 лет назад

The splt_cue_export_to_file function in cue.c in libmp3splt 0.9.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file.

CVE-2017-5665

CVSS3: 5.5

nvd

почти 9 лет назад

The splt_cue_export_to_file function in cue.c in libmp3splt 0.9.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file.

GHSA-hv66-wwx3-2f7r

CVSS3: 5.5

github

больше 3 лет назад

The splt_cue_export_to_file function in cue.c in libmp3splt 0.9.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file.

EPSS

Процентиль: 48%

0.00245

Низкий