Description
In TagLib 1.11.1, the rebuildAggregateFrames function in id3v2framefactory.cpp has a pointer to cast vulnerability, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted audio file.
Mitigation
Minimal update. May introduce new vulnerabilities or breaking changes.
|
 debian 14 | | | 1.11.1+dfsg.1-0.2 |
debian 11 | | | 1.11.1+dfsg.1-0.2 |
 alpine v3.11 | | =1.10-r0 || =1.11-r0 || =1.11-r1 || =1.11.1-r0 || =1.11.1-r1 || =1.5-r0 || =1.6-r0 || =1.6.1-r0 || =1.6.1-r1 || =1.6.3-r0 || =1.6.3-r1 || =1.6.3-r2 || =1.7-r0 || =1.7-r1 || =1.7-r2 || =1.7.1-r0 || =1.7.2-r0 || =1.8-r0 || =1.9.1-r0 || =1.9.1-r1 || >=0 <1.11.1-r2 | 1.11.1-r2 |
debian 12 | | | 1.11.1+dfsg.1-0.2 |
debian 13 | | | 1.11.1+dfsg.1-0.2 |
 rpm rhel7 | | - | - |
alpine v3.10 | | =1.10-r0 || =1.11-r0 || =1.11-r1 || =1.11.1-r0 || =1.11.1-r1 || =1.5-r0 || =1.6-r0 || =1.6.1-r0 || =1.6.1-r1 || =1.6.3-r0 || =1.6.3-r1 || =1.6.3-r2 || =1.7-r0 || =1.7-r1 || =1.7-r2 || =1.7.1-r0 || =1.7.2-r0 || =1.8-r0 || =1.9.1-r0 || =1.9.1-r1 || >=0 <1.11.1-r2 | 1.11.1-r2 |
rpm rhel6 | | - | - |
