Aggregates CVE and security vulnerability intelligence across all scott_wheeler-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk input validation, vendor risk denial of service, and vendor risk integer handling and related problems; some flaws may lead to vendor impact unexpected behavior.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2012-1584 | Integer overflow in the mid function in toolkit/tbytevector.cpp in TagLib 1.7 and earlier allows context-dependent attackers to cause a denial of service (application crash) via a crafted file header field in a media file, which triggers a large memory allocation. | [email protected] | 4.3 | 2.81% | 2012-09-06 | 2026-04-29 |
| CVE-2012-1108 | The parse function in ogg/xiphcomment.cpp in TagLib 1.7 and earlier allows remote attackers to cause a denial of service (crash) via a crafted vendorLength field in an ogg file. | [email protected] | 4.3 | 4.04% | 2012-09-06 | 2026-04-29 |
| CVE-2012-1107 | The analyzeCurrent function in ape/apeproperties.cpp in TagLib 1.7 and earlier allows context-dependent attackers to cause a denial of service (application crash) via a crafted sampleRate in an ape file, which triggers a divide-by-zero error. | [email protected] | 4.3 | 2.86% | 2012-09-06 | 2026-04-29 |