In mpg123 1.25.0, there is a heap-based buffer over-read in the convert_latin1 function in libmpg123/id3.c. A crafted input will lead to a remote denial of service attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mpg123 mpg123 1.25.0 |