CVE-2017-14407

Опубликовано: 13 сент. 2017

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 4.3

CVSS3: 5.5

Описание

A stack-based buffer over-read was discovered in filterYule in gain_analysis.c in MP3Gain version 1.5.2. The vulnerability causes an application crash, which leads to remote denial of service.

Релиз	Статус	Примечание
artful	DNE
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was needed]
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was needed
upstream	needed

Показывать по

Ссылки на источники

EPSS

Процентиль: 64%

0.00464

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2017-14407

CVSS3: 5.5

nvd

больше 8 лет назад

A stack-based buffer over-read was discovered in filterYule in gain_analysis.c in MP3Gain version 1.5.2. The vulnerability causes an application crash, which leads to remote denial of service.

CVE-2017-14407

CVSS3: 5.5

debian

больше 8 лет назад

A stack-based buffer over-read was discovered in filterYule in gain_an ...

GHSA-8g2w-fqgg-h73v

CVSS3: 5.5

github

больше 3 лет назад

A stack-based buffer over-read was discovered in filterYule in gain_analysis.c in MP3Gain version 1.5.2. The vulnerability causes an application crash, which leads to remote denial of service.

EPSS

Процентиль: 64%

0.00464

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

CVE-2017-14407

Описание

Пакет mp3gain

Ссылки на источники

Связанные уязвимости