CVE-2012-1108 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2012-1108 Interim 1 15 2023-12-08T02:54:12Z current 2021-05-30T13:02:24Z 2023-12-08T02:54:12Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2012-1108 The parse function in ogg/xiphcomment.cpp in TagLib 1.7 and earlier allows remote attackers to cause a denial of service (crash) via a crafted vendorLength field in an ogg file. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/sle-security-updates/2012-June/000142.html E-Mail link for SUSE-SU-2012:0743-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP4 taglib-1.5-19.23.4 taglib-32bit-1.5-19.23.4 taglib-devel-1.5-19.23.4 taglib-x86-1.5-19.23.4 taglib-1.5-19.23.4 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA taglib-32bit-1.5-19.23.4 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA taglib-1.5-19.23.4 as a component of SUSE Linux Enterprise Server 11 SP3 taglib-32bit-1.5-19.23.4 as a component of SUSE Linux Enterprise Server 11 SP3 taglib-x86-1.5-19.23.4 as a component of SUSE Linux Enterprise Server 11 SP3 taglib-1.5-19.23.4 as a component of SUSE Linux Enterprise Server 11 SP4 taglib-32bit-1.5-19.23.4 as a component of SUSE Linux Enterprise Server 11 SP4 taglib-x86-1.5-19.23.4 as a component of SUSE Linux Enterprise Server 11 SP4 taglib-devel-1.5-19.23.4 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 The parse function in ogg/xiphcomment.cpp in TagLib 1.7 and earlier allows remote attackers to cause a denial of service (crash) via a crafted vendorLength field in an ogg file. CVE-2012-1108 SUSE Linux Enterprise Server 11 SP1-TERADATA:taglib-1.5-19.23.4 SUSE Linux Enterprise Server 11 SP1-TERADATA:taglib-32bit-1.5-19.23.4 SUSE Linux Enterprise Server 11 SP3:taglib-1.5-19.23.4 SUSE Linux Enterprise Server 11 SP3:taglib-32bit-1.5-19.23.4 SUSE Linux Enterprise Server 11 SP3:taglib-x86-1.5-19.23.4 SUSE Linux Enterprise Server 11 SP4:taglib-1.5-19.23.4 SUSE Linux Enterprise Server 11 SP4:taglib-32bit-1.5-19.23.4 SUSE Linux Enterprise Server 11 SP4:taglib-x86-1.5-19.23.4 SUSE Linux Enterprise Software Development Kit 11 SP4:taglib-devel-1.5-19.23.4 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P