The id3_ucs4_length function in ucs4.c in libid3tag 0.15...
Moderate severity
Unreviewed
Published
May 17, 2022
to the GitHub Advisory Database
•
Updated Jan 27, 2023
Description
Published by the National Vulnerability Database
Jul 31, 2017
Published to the GitHub Advisory Database
May 17, 2022
Last updated
Jan 27, 2023
The id3_ucs4_length function in ucs4.c in libid3tag 0.15.1b allows remote attackers to cause a denial of service (NULL Pointer Dereference and application crash) via a crafted mp3 file.
References