Описание
The III_i_stereo function in libmpg123/layer3.c in mpg123 through 1.25.1 allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted audio file that is mishandled in the code for the "block_type != 2" case, a similar issue to CVE-2017-9870.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 1.25.6-1 |
| bionic | not-affected | 1.25.8-1 |
| cosmic | not-affected | 1.25.8-1 |
| devel | not-affected | 1.25.8-1 |
| disco | not-affected | 1.25.8-1 |
| eoan | not-affected | 1.25.8-1 |
| esm-apps/xenial | released | 1.22.4-1ubuntu0.1+esm1 |
| esm-infra-legacy/trusty | released | 1.16.0-1ubuntu1.1+esm1 |
| esm-infra/bionic | not-affected | 1.25.8-1 |
| esm-infra/focal | not-affected | 1.25.8-1 |
Показывать по
4.3 Medium
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
The III_i_stereo function in libmpg123/layer3.c in mpg123 through 1.25.1 allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted audio file that is mishandled in the code for the "block_type != 2" case, a similar issue to CVE-2017-9870.
The III_i_stereo function in libmpg123/layer3.c in mpg123 through 1.25 ...
The III_i_stereo function in libmpg123/layer3.c in mpg123 through 1.25.1 allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted audio file that is mishandled in the code for the "block_type != 2" case, a similar issue to CVE-2017-9870.
4.3 Medium
CVSS2
5.5 Medium
CVSS3