FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libmusicbrainz -- multiple buffer overflow vulnerabilities

Affected packages
libmusicbrainz < 2.1.3

Details

VuXML ID ed124f8c-82a2-11db-b46b-0012f06707f0
Discovery 2006-08-17
Entry 2006-12-02

SecurityFocus reports about libmusicbrainz:

The libmusicbrainz library is prone to multiple buffer-overflow vulnerabilities because the application fails to check the size of the data before copying it into a finite-sized internal memory buffer.

An attacker can exploit these issues to execute arbitrary code within the context of the application or to cause a denial-of-service condition.

References

Bugtraq ID 19508
CVE Name CVE-2006-4197
URL http://www.securityfocus.com/bid/21185/discuss