VYPR

rpm package

opensuse/mp3gain&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/mp3gain&distro=openSUSE%20Tumbleweed

Vulnerabilities (2)

  • CVE-2019-18359MedOct 23, 2019
    affected < 1.6.2-2.9fixed 1.6.2-2.9

    A buffer over-read was discovered in ReadMP3APETag in apetag.c in MP3Gain 1.6.2. The vulnerability causes an application crash, which leads to remote denial of service.

  • CVE-2017-12911MedSep 7, 2017
    affected < 1.6.2-2.9fixed 1.6.2-2.9

    The "apetag.c" file in MP3Gain 1.5.2.r2 has a vulnerability which results in a stack memory corruption when opening a crafted MP3 file.