Vulnerabilities (CVE)

Filtered by vendor Underbit Subscribe
Filtered by product Libid3tag
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2004-2779 1 Underbit 1 Libid3tag 2024-02-28 5.0 MEDIUM 7.5 HIGH
id3_utf16_deserialize() in utf16.c in libid3tag through 0.15.1b misparses ID3v2 tags encoded in UTF-16 with an odd number of bytes, triggering an endless loop allocating memory until an OOM condition is reached, leading to denial-of-service (DoS).