You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa mingw-libid3tag

Sigurnosni nedostaci programskog paketa mingw-libid3tag

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2018-04-23 15:50:52.055492

Name : mingw-libid3tag
Product : Fedora 27
Version : 0.15.1b
Release : 23.fc27
Summary : ID3 tag manipulation library
Description :
libid3tag is a library for reading and (eventually) writing ID3 tags,
both ID3v1 and the various versions of ID3v2.

Update Information:

Fix CVE-2017-11550 and CVE-2004-2779

* Mon Apr 9 2018 David King <> – 0.15.1b-23
– Add ID3v1 zero padding patch from Debian
– Add a fix for CVE-2017-11550 (#1561986)
– Add a fix for CVE-2004-2779 (#1561983)
– Use %license, remove Group tag
– Add gperf patch from Debian
* Wed Jul 26 2017 Fedora Release Engineering <> – 0.15.1b-22
– Rebuilt for
* Fri Feb 10 2017 Fedora Release Engineering <> – 0.15.1b-21
– Rebuilt for

[ 1 ] Bug #1561983 – CVE-2004-2779 libid3tag: id3_utf16_deserialize() misparses ID3v2 tags with an odd number of bytes resulting in an endless loop

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2018-4e26c06aef’ at the command
line. For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list —
To unsubscribe send an email to

AutorVlatka Misic
Cert idNCERT-REF-2018-04-0001-ADV
More in Preporuke
Sigurnosni nedostaci programskih paketa mysql-5.5 i mysql-5.7

Otkriveni su sigurnosni nedostaci u programskim paketima mysql-5.5 i mysql-5.7 za operacijski sustav Ubuntu. Otkriveni nedostaci potencijalnim napadačima omogućuju narušavanje...