Am Sun, 02 Jul 2017 11:12:36 +0200
schrieb Salvatore Bonaccorso :
> CVE-2017-10683[0]:
> | In mpg123 1.25.0, there is a heap-based buffer over-read in the
> | convert_latin1 function in libmpg123/id3.c. A crafted input will lead
> | to a remote denial of service attack.
I don't oppose the creati
Control: tags -1 + patch
On Sun, Jul 02, 2017 at 11:12:36AM +0200, Salvatore Bonaccorso wrote:
> Source: mpg123
> Version: 1.25.0-1
> Severity: important
> Tags: upstream security
>
> Hi,
>
> the following vulnerability was published for mpg123.
>
> CVE-2017-10683[0]:
> | In mpg123 1.25.0, ther
Source: mpg123
Version: 1.25.0-1
Severity: important
Tags: upstream security
Hi,
the following vulnerability was published for mpg123.
CVE-2017-10683[0]:
| In mpg123 1.25.0, there is a heap-based buffer over-read in the
| convert_latin1 function in libmpg123/id3.c. A crafted input will lead
| to
3 matches
Mail list logo
