Search CVE reports
1 – 5 of 5 results
A flaw was found in the GNOME localsearch (previously known as tracker-miners) MP3 Extractor `tracker-extract-mp3` component. A remote attacker could exploit this heap buffer overflow vulnerability by providing a specially crafted...
2 affected packages
localsearch, tracker-miners
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| localsearch | — | Not in release | Not in release | — | — |
| tracker-miners | — | Fixed | Fixed | Not affected | Not affected |
Some fixes available 3 of 5
A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor, specifically within the tracker-extract-mp3 component. This heap buffer overflow vulnerability occurs when processing specially crafted MP3...
2 affected packages
localsearch, tracker-miners
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| localsearch | Not affected | Not in release | Not in release | — | — |
| tracker-miners | Not in release | Fixed | Fixed | Vulnerable | Vulnerable |
Some fixes available 3 of 5
A flaw was found in the `tracker-extract-mp3` component of GNOME localsearch (previously known as tracker-miners). This vulnerability, a heap buffer overflow, occurs when processing specially crafted MP3 files. A remote attacker...
2 affected packages
localsearch, tracker-miners
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| localsearch | Not affected | Not in release | Not in release | — | — |
| tracker-miners | Not in release | Fixed | Fixed | Vulnerable | Vulnerable |
Some fixes available 3 of 5
A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor. When processing specially crafted MP3 files containing ID3v2.4 tags, a missing bounds check in the `extract_performers_tags` function can...
2 affected packages
localsearch, tracker-miners
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| localsearch | Not affected | Not in release | Not in release | — | — |
| tracker-miners | Not in release | Fixed | Fixed | Vulnerable | Vulnerable |
Some fixes available 3 of 5
A flaw was found in the tracker-miners package. A weakness in the sandbox allows a maliciously-crafted file to execute code outside the sandbox if the tracker-extract process has first been compromised by a separate vulnerability.
1 affected package
tracker-miners
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| tracker-miners | — | — | Fixed | Ignored | Ignored |