id3_utf16_deserialize() in utf16.c in libid3tag through 0.15.1b misparses ID3v2 tags encoded in UTF-16 with an odd number of bytes, triggering an endless loop allocating memory until an OOM condition is reached, leading to denial-of-service (DoS).
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2018-02-20T21:00:00Z

Updated: 2024-09-17T01:15:33.364Z

Reserved: 2018-02-20T00:00:00Z

Link: CVE-2004-2779

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-02-20T21:29:00.207

Modified: 2024-11-20T23:54:12.203

Link: CVE-2004-2779

cve-icon Redhat

Severity : Low

Publid Date: 2004-12-31T00:00:00Z

Links: CVE-2004-2779 - Bugzilla