Launchpad CVE tracker

CVE 2012-1584

Integer overflow in the mid function in toolkit/tbytevector.cpp in TagLib 1.7 and earlier allows context-dependent attackers to cause a denial of service (application crash) via a crafted file header field in a media file, which triggers a large memory allocation.

Related bugs and status

CVE-2012-1584 (Candidate) is related to these bugs:

Bug #945415: multiple security vulnerabilities in taglib

Summary				In	Importance	Status
	945415	multiple security vulnerabilities in taglib		taglib (Ubuntu)	Low	Fix Released
	945415	multiple security vulnerabilities in taglib		taglib (Debian)	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://www.securityfoc...
MISC: http://www.gentoo.org/...
MISC: http://www.openwall.co...
MISC: http://www.openwall.co...
MISC: http://www.openwall.co...
MISC: http://mail.kde.org/pi...
MISC: http://mail.kde.org/pi...
MISC: https://github.com/tag...
MISC: https://exchange.xforc...

Launchpad.net

CVE 2012-1584

Related bugs and status

Related bugs

References