VYPR

rpm package

opensuse/id3lib&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/id3lib&distro=openSUSE%20Tumbleweed

Vulnerabilities (1)

  • CVE-2007-4460Aug 21, 2007
    affected < 3.8.3-266.5fixed 3.8.3-266.5

    The RenderV2ToFile function in tag_file.cpp in id3lib (aka libid3) 3.8.3 allows local users to overwrite arbitrary files via a symlink attack on a temporary file whose name is constructed from the name of a file being tagged.