Medium severity5.5NVD Advisory· Published Jul 31, 2017· Updated Jun 17, 2026
CVE-2017-11550
CVE-2017-11550
Description
The id3_ucs4_length function in ucs4.c in libid3tag 0.15.1b allows remote attackers to cause a denial of service (NULL Pointer Dereference and application crash) via a crafted mp3 file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9cpe:2.3:a:libid3tag_project:libid3tag:0.15.1b:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:libid3tag_project:libid3tag:0.15.1b:*:*:*:*:*:*:*
- (no CPE)range: =0.15.1b
- osv-coords7 versionspkg:rpm/suse/libid3tag&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP2pkg:rpm/suse/libid3tag&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/libid3tag&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4pkg:rpm/suse/libid3tag&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP2pkg:rpm/suse/libid3tag&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3pkg:rpm/suse/libid3tag&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP2pkg:rpm/suse/libid3tag&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP3
< 0.15.1b-184.3.1+ 6 more
- (no CPE)range: < 0.15.1b-184.3.1
- (no CPE)range: < 0.15.1b-184.3.1
- (no CPE)range: < 0.15.1b-132.3.1
- (no CPE)range: < 0.15.1b-184.3.1
- (no CPE)range: < 0.15.1b-184.3.1
- (no CPE)range: < 0.15.1b-184.3.1
- (no CPE)range: < 0.15.1b-184.3.1
Patches
Vulnerability mechanics
References
1- seclists.org/fulldisclosure/2017/Jul/85nvdMailing ListThird Party Advisory
News mentions
0No linked articles in our index yet.