Описание
A heap-based buffer over-read in the getbits function in src/libmpg123/getbits.h in mpg123 through 1.25.5 allows remote attackers to cause a possible denial-of-service (out-of-bounds read) or possibly have unspecified other impact via a crafted mp3 file.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 1.25.10-1 |
| cosmic | not-affected | 1.25.10-1 |
| devel | not-affected | 1.25.10-1 |
| disco | not-affected | 1.25.10-1 |
| eoan | not-affected | 1.25.10-1 |
| esm-apps/xenial | released | 1.22.4-1ubuntu0.1+esm2 |
| esm-infra-legacy/trusty | released | 1.16.0-1ubuntu1.1+esm2 |
| esm-infra/bionic | not-affected | 1.25.10-1 |
| esm-infra/focal | not-affected | 1.25.10-1 |
| focal | not-affected | 1.25.10-1 |
Показывать по
EPSS
6.8 Medium
CVSS2
8.3 High
CVSS3
Связанные уязвимости
A heap-based buffer over-read in the getbits function in src/libmpg123/getbits.h in mpg123 through 1.25.5 allows remote attackers to cause a possible denial-of-service (out-of-bounds read) or possibly have unspecified other impact via a crafted mp3 file.
A heap-based buffer over-read in the getbits function in src/libmpg123/getbits.h in mpg123 through 1.25.5 allows remote attackers to cause a possible denial-of-service (out-of-bounds read) or possibly have unspecified other impact via a crafted mp3 file.
A heap-based buffer over-read in the getbits function in src/libmpg123 ...
A heap-based buffer over-read in the getbits function in src/libmpg123/getbits.h in mpg123 through 1.25.5 allows remote attackers to cause a possible denial-of-service (out-of-bounds read) or possibly have unspecified other impact via a crafted mp3 file.
EPSS
6.8 Medium
CVSS2
8.3 High
CVSS3