CVE-2008-2109 - log back

CVE-2008-2109 created at 25 Sep 2019 19:31:40
Severity
+ Medium
Remote
+ Remote
Type
+ Denial of service
Description
+ field.c in the libid3tag 0.15.0b library allows context-dependent attackers to cause a denial of service (CPU consumption) via an ID3_FIELD_TYPE_STRINGLIST field that ends in '\0', which triggers an infinite loop.
References
+ http://bugs.gentoo.org/show_bug.cgi?id=210564
+ https://www.mars.org/mailman/public/mad-dev/2008-January/001366.html
Notes