CVE-2017-11550 log

Source
Severity Medium
Remote Yes
Type Denial of service
Description
The id3_ucs4_length function in ucs4.c in libid3tag 0.15.1b allows remote attackers to cause a denial of service (NULL Pointer Dereference and application crash) via a crafted mp3 file.
Group Package Affected Fixed Severity Status Ticket
AVG-633 lib32-libid3tag 0.15.1a-1 0.15.1b-1 Medium Fixed FS#57601
AVG-632 libid3tag 0.15.1b-5 0.15.1b-6 Medium Fixed FS#57601
References
http://seclists.org/fulldisclosure/2017/Jul/85