CVE-2017-12912

NameCVE-2017-12912
DescriptionThe "mpglibDBL/layer3.c" file in MP3Gain 1.5.2.r2 has a vulnerability which results in a read access violation when opening a crafted MP3 file.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
mp3gain (PTS)sid, trixie, bookworm, bullseye1.6.2-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
mp3gainsourcewheezy(unfixed)end-of-life
mp3gainsource(unstable)1.6.2-1

Notes

https://drive.google.com/open?id=0B9DojFnTUSNGeS1hZlJkeGVkYlU

Search for package or bug name: Reporting problems