VYPR

rpm package

suse/mp3gain&distro=SUSE Package Hub 15 SP1

pkg:rpm/suse/mp3gain&distro=SUSE%20Package%20Hub%2015%20SP1

Vulnerabilities (2)

  • CVE-2019-18359MedOct 23, 2019
    affected < 1.6.2-bp151.4.3.1fixed 1.6.2-bp151.4.3.1

    A buffer over-read was discovered in ReadMP3APETag in apetag.c in MP3Gain 1.6.2. The vulnerability causes an application crash, which leads to remote denial of service.

  • CVE-2017-12911MedSep 7, 2017
    affected < 1.6.2-bp151.4.3.1fixed 1.6.2-bp151.4.3.1

    The "apetag.c" file in MP3Gain 1.5.2.r2 has a vulnerability which results in a stack memory corruption when opening a crafted MP3 file.