Search CVE reports


Toggle filters

1 – 4 of 4 results


CVE-2017-15185

Medium priority
Vulnerable

plugins/ogg.c in Libmp3splt 0.9.2 calls the libvorbis vorbis_block_clear function with uninitialized data upon detection of invalid input, which allows remote attackers to cause a denial of service (application crash) via a crafted file.

1 affected package

libmp3splt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libmp3splt Not in release Not in release Not in release Not in release Vulnerable
Show less packages

CVE-2017-5851

Low priority
Vulnerable

The free_options function in options_manager.c in mp3splt 2.6.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file. NOTE: this typically has no risk; this crash of this...

1 affected package

mp3splt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mp3splt Vulnerable Vulnerable Vulnerable Vulnerable Vulnerable
Show less packages

CVE-2017-5666

Medium priority
Vulnerable

The free_options function in options_manager.c in mp3splt 2.6.2 allows remote attackers to cause a denial of service (invalid free and crash) via a crafted file.

1 affected package

mp3splt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mp3splt Vulnerable Vulnerable Vulnerable Vulnerable Vulnerable
Show less packages

CVE-2017-5665

Low priority
Vulnerable

The splt_cue_export_to_file function in cue.c in libmp3splt 0.9.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file.

1 affected package

mp3splt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mp3splt Vulnerable Vulnerable Vulnerable Vulnerable Vulnerable
Show less packages