diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index eaae187be5be..615478c13628 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -58,6 +58,32 @@ Notes: * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) --> + + taglib -- heap-based buffer over-read + + + taglib + 1.11.1 + + + + +

Taglib reports:

+
+

Fixed OOB read on invalid Ogg FLAC files (CVE-2018-11439).

+
+ +
+ + https://github.com/taglib/taglib/tree/v1.12-beta-1 + CVE-2018-11439 + + + 2018-03-05 + 2020-01-20 + +
+ gitea -- multiple vulnerabilities