[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FD] taglib 1.11.1 vuln

To: 熊文彬 <bear.xiong@xxxxxxxxxxxxxxxxxxxx>, seclist <fulldisclosure@xxxxxxxxxxxx>
Subject: Re: [FD] taglib 1.11.1 vuln
From: Alan Coopersmith <alan.coopersmith@xxxxxxxxxx>
Date: Tue, 29 May 2018 09:39:58 -0700

On 05/27/18 07:12 PM, 熊文彬 wrote:
> taglib vulnerability
> ================
> Author : Webin security lab - dbapp security Ltd
> ===============
> 
> 
> Introduction:
> =============
> TagLib Audio Meta-Data Library
> 
> http://taglib.org/

I can't find a matching bug for this in https://github.com/taglib/taglib/issues
- did you actually tell the authors of this software about this bug or just
the rest of the world and not the people who can fix it?

-- 
        -Alan Coopersmith-               alan.coopersmith@xxxxxxxxxx
         Oracle Solaris Engineering - https://blogs.oracle.com/alanc

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

References:
- [FD] taglib 1.11.1 vuln
  - From: 熊文彬

Prev by Date: [FD] foilChat sign up email PIN confirmation bypass
Next by Date: [FD] CVE-2018-11551 AXON PBX DLL Loading Arbitrary Code Execution & Privilege Escalation Vulnerability
Previous by thread: [FD] taglib 1.11.1 vuln
Next by thread: [FD] WindScribe VPN 1.81 Privilege Escalation
Index(es):
- Date
- Thread