rpm package
suse/tracker-miners&distro=SUSE Linux Enterprise Module for Desktop Applications 15 SP7
pkg:rpm/suse/tracker-miners&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP7
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-1767 | Med | 5.6 | < 3.6.2-150600.4.6.1 | 3.6.2-150600.4.6.1 | Jun 16, 2026 | A flaw was found in the GNOME localsearch (previously known as tracker-miners) MP3 Extractor `tracker-extract-mp3` component. A remote attacker could exploit this heap buffer overflow vulnerability by providing a specially crafted MP3 file containing malformed ID3 tags. This inco | |
| CVE-2026-1766 | Med | 5.6 | < 3.6.2-150600.4.6.1 | 3.6.2-150600.4.6.1 | Jun 16, 2026 | A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor, specifically within the tracker-extract-mp3 component. This heap buffer overflow vulnerability occurs when processing specially crafted MP3 files containing malformed ID3v2.3 COMM (Comment) | |
| CVE-2026-1765 | Med | 5.6 | < 3.6.2-150600.4.6.1 | 3.6.2-150600.4.6.1 | Jun 16, 2026 | A flaw was found in the `tracker-extract-mp3` component of GNOME localsearch (previously known as tracker-miners). This vulnerability, a heap buffer overflow, occurs when processing specially crafted MP3 files. A remote attacker could exploit this by providing a malicious MP3 fil | |
| CVE-2026-1764 | Med | 5.6 | < 3.6.2-150600.4.6.1 | 3.6.2-150600.4.6.1 | Jun 16, 2026 | A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor. When processing specially crafted MP3 files containing ID3v2.4 tags, a missing bounds check in the `extract_performers_tags` function can lead to a heap buffer overflow. This vulnerability a |
- affected < 3.6.2-150600.4.6.1fixed 3.6.2-150600.4.6.1
A flaw was found in the GNOME localsearch (previously known as tracker-miners) MP3 Extractor `tracker-extract-mp3` component. A remote attacker could exploit this heap buffer overflow vulnerability by providing a specially crafted MP3 file containing malformed ID3 tags. This inco
- affected < 3.6.2-150600.4.6.1fixed 3.6.2-150600.4.6.1
A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor, specifically within the tracker-extract-mp3 component. This heap buffer overflow vulnerability occurs when processing specially crafted MP3 files containing malformed ID3v2.3 COMM (Comment)
- affected < 3.6.2-150600.4.6.1fixed 3.6.2-150600.4.6.1
A flaw was found in the `tracker-extract-mp3` component of GNOME localsearch (previously known as tracker-miners). This vulnerability, a heap buffer overflow, occurs when processing specially crafted MP3 files. A remote attacker could exploit this by providing a malicious MP3 fil
- affected < 3.6.2-150600.4.6.1fixed 3.6.2-150600.4.6.1
A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor. When processing specially crafted MP3 files containing ID3v2.4 tags, a missing bounds check in the `extract_performers_tags` function can lead to a heap buffer overflow. This vulnerability a