Oval Definition:oval:org.opensuse.security:def:79351
Revision Date:2018-03-16Version:1
Title:Security update for libid3tag (Moderate)
Description:

This update for libid3tag fixes the following issues:

- CVE-2004-2779 CVE-2017-11551: Fixed id3_utf16_deserialize() in utf16.c, which previously misparsed ID3v2 tags encoded in UTF-16 with an odd number of bytes, triggering an endless loop allocating memory until OOM leading to DoS. (bsc#1081959 bsc#1081961) - CVE-2017-11550 CVE-2008-2109: Fixed the handling of unknown encodings when parsing ID3 tags. (bsc#1081962 bsc#387731)
Family:unixClass:patch
Status:Reference(s):1081959
1081961
1081962
387731
CVE-2004-2779
CVE-2008-2109
CVE-2017-11550
CVE-2017-11551
SUSE-SU-2018:0722-1
Platform(s):SUSE Linux Enterprise Desktop 12 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND libid3tag0-0.15.1b-184.3.1 is installed
    • BACK