Medium severity5.6NVD Advisory· Published Jun 16, 2026· Updated Jun 16, 2026
CVE-2026-1765
CVE-2026-1765
Description
A flaw was found in the tracker-extract-mp3 component of GNOME localsearch (previously known as tracker-miners). This vulnerability, a heap buffer overflow, occurs when processing specially crafted MP3 files. A remote attacker could exploit this by providing a malicious MP3 file, leading to a Denial of Service (DoS) where the application crashes. It may also potentially expose sensitive information from the system's memory.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5- osv-coords4 versionspkg:rpm/opensuse/localsearch&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/tracker-miners&distro=openSUSE%20Leap%2015.6pkg:rpm/suse/tracker-miners&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP7pkg:rpm/suse/tracker-miners&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP7
< 3.10.2-2.1+ 3 more
- (no CPE)range: < 3.10.2-2.1
- (no CPE)range: < 3.6.2-150600.4.6.1
- (no CPE)range: < 3.6.2-150600.4.6.1
- (no CPE)range: < 3.6.2-150600.4.6.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.