CVE-2008-2109

EPSS 7.4%

發布日:2008/5/7修改日:2026/4/28

描述

field.c in the libid3tag 0.15.0b library allows context-dependent attackers to cause a denial of service (CPU consumption) via an ID3_FIELD_TYPE_STRINGLIST field that ends in '\0', which triggers an infinite loop.

受影響套件(1)

Debian/libid3tagfrom 0, < 0.15.1b-8

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2008-2109