VYPR

rpm package

opensuse/mp3gain&distro=openSUSE Leap 15.1

pkg:rpm/opensuse/mp3gain&distro=openSUSE%20Leap%2015.1

Vulnerabilities (2)

  • CVE-2019-18359MedOct 23, 2019
    affected < 1.6.2-lp151.3.3.1fixed 1.6.2-lp151.3.3.1

    A buffer over-read was discovered in ReadMP3APETag in apetag.c in MP3Gain 1.6.2. The vulnerability causes an application crash, which leads to remote denial of service.

  • CVE-2017-12911MedSep 7, 2017
    affected < 1.6.2-lp151.3.3.1fixed 1.6.2-lp151.3.3.1

    The "apetag.c" file in MP3Gain 1.5.2.r2 has a vulnerability which results in a stack memory corruption when opening a crafted MP3 file.