Buffer Overflow vulnerability in function ID3_Support::ID3v2Frame::getFrameValue in exempi 2.5.0 and earlier allows remote attackers to cause a denial of service via opening of crafted audio file with ID3V2 frame.
References
Link | Resource |
---|---|
https://gitlab.freedesktop.org/libopenraw/exempi/commit/fdd4765a699f9700850098b43b9798b933acb32f | Patch |
https://gitlab.freedesktop.org/libopenraw/exempi/issues/13 | Exploit Issue Tracking Vendor Advisory |
https://lists.debian.org/debian-lts-announce/2023/09/msg00032.html |
Configurations
History
26 Sep 2023, 01:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
25 Aug 2023, 21:07
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:exempi_project:exempi:*:*:*:*:*:*:*:* | |
CWE | CWE-787 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
References | (MISC) https://gitlab.freedesktop.org/libopenraw/exempi/issues/13 - Exploit, Issue Tracking, Vendor Advisory | |
References | (MISC) https://gitlab.freedesktop.org/libopenraw/exempi/commit/fdd4765a699f9700850098b43b9798b933acb32f - Patch | |
First Time |
Exempi Project exempi
Exempi Project |
22 Aug 2023, 20:10
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-08-22 19:15
Updated : 2024-02-28 20:33
NVD link : CVE-2020-18651
Mitre link : CVE-2020-18651
CVE.ORG link : CVE-2020-18651
JSON object : View
Products Affected
exempi_project
- exempi
CWE
CWE-787
Out-of-bounds Write