Vulnerabilities > Mp3Gain > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-07 | CVE-2018-10778 | Out-of-bounds Read vulnerability in Mp3Gain Read access violation in the III_dequantize_sample function in mpglibDBL/layer3.c in mp3gain through 1.5.2-r2 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact, a different vulnerability than CVE-2017-9872 and CVE-2017-14409. | 6.8 |
| 2018-05-07 | CVE-2018-10777 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Mp3Gain Buffer overflow in the WriteMP3GainAPETag function in apetag.c in mp3gain through 1.5.2-r2 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact. | 6.8 |
| 2018-05-07 | CVE-2018-10776 | Improper Input Validation vulnerability in Mp3Gain The getbits function in mpglibDBL/common.c in mp3gain through 1.5.2-r2 allows remote attackers to cause a denial of service (segmentation fault and application crash) or possibly have unspecified other impact. | 6.8 |
| 2017-09-13 | CVE-2017-14412 | Out-of-bounds Write vulnerability in Mp3Gain 1.5.2 An invalid memory write was discovered in copy_mp in interface.c in mpglibDBL, as used in MP3Gain version 1.5.2. | 6.8 |
| 2017-09-13 | CVE-2017-14411 | Out-of-bounds Write vulnerability in Mp3Gain 1.5.2 A stack-based buffer overflow was discovered in copy_mp in interface.c in mpglibDBL, as used in MP3Gain version 1.5.2. | 6.8 |
| 2017-09-13 | CVE-2017-14410 | Out-of-bounds Read vulnerability in Mp3Gain 1.5.2 A buffer over-read was discovered in III_i_stereo in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. | 4.3 |
| 2017-09-13 | CVE-2017-14409 | Out-of-bounds Write vulnerability in Mp3Gain 1.5.2 A buffer overflow was discovered in III_dequantize_sample in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. | 6.8 |
| 2017-09-13 | CVE-2017-14408 | Out-of-bounds Read vulnerability in Mp3Gain 1.5.2 A stack-based buffer over-read was discovered in dct36 in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. | 4.3 |
| 2017-09-13 | CVE-2017-14407 | Out-of-bounds Read vulnerability in Mp3Gain 1.5.2 A stack-based buffer over-read was discovered in filterYule in gain_analysis.c in MP3Gain version 1.5.2. | 4.3 |
| 2017-09-13 | CVE-2017-14406 | NULL Pointer Dereference vulnerability in Mp3Gain 1.5.2 A NULL pointer dereference was discovered in sync_buffer in interface.c in mpglibDBL, as used in MP3Gain version 1.5.2. | 4.3 |