Integer signedness error in the store_id3_text function in the ID3v2 code in mpg123 before 1.7.2 allows remote attackers to cause a denial of service (out-of-bounds memory access) and possibly execute arbitrary code via an ID3 tag with a negative encoding value. NOTE: some of these details are obtained from third party information.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Mpg123 | Mpg123 | * | 1.7.1 (including) |
| Mpg123 | Mpg123 | 0.59m (including) | 0.59m (including) |
| Mpg123 | Mpg123 | 0.59n (including) | 0.59n (including) |
| Mpg123 | Mpg123 | 0.59o (including) | 0.59o (including) |
| Mpg123 | Mpg123 | 0.59p (including) | 0.59p (including) |
| Mpg123 | Mpg123 | 0.59q (including) | 0.59q (including) |
| Mpg123 | Mpg123 | 0.59r (including) | 0.59r (including) |
| Mpg123 | Mpg123 | 0.59s (including) | 0.59s (including) |
| Mpg123 | Mpg123 | 0.62 (including) | 0.62 (including) |
| Mpg123 | Mpg123 | 1.6.3 (including) | 1.6.3 (including) |
| Mpg123 | Mpg123 | 1.6.4 (including) | 1.6.4 (including) |
| Mpg123 | Mpg123 | 1.7.0 (including) | 1.7.0 (including) |
| Mpg123 | Mpg123 | pre0.59s (including) | pre0.59s (including) |
| Mpg123 | Mpg123 | pre0.59s_r11 (including) | pre0.59s_r11 (including) |