7913 moderate openSUSE Leap 42.3 Update This update for libid3tag fixes the following issues: - CVE-2004-2779 CVE-2017-11551: Fixed id3_utf16_deserialize() in utf16.c, which previously misparsed ID3v2 tags encoded in UTF-16 with an odd number of bytes, triggering an endless loop allocating memory until OOM leading to DoS. (bsc#1081959 bsc#1081961) - CVE-2017-11550 CVE-2008-2109: Fixed the handling of unknown encodings when parsing ID3 tags. (bsc#1081962 bsc#387731) This update was imported from the SUSE:SLE-12:Update update project. libid3tag-0.15.1b-188.3.1.src.rpm libid3tag-debugsource-0.15.1b-188.3.1.i586.rpm libid3tag-devel-0.15.1b-188.3.1.i586.rpm libid3tag0-0.15.1b-188.3.1.i586.rpm libid3tag0-32bit-0.15.1b-188.3.1.x86_64.rpm libid3tag0-debuginfo-0.15.1b-188.3.1.i586.rpm libid3tag0-debuginfo-32bit-0.15.1b-188.3.1.x86_64.rpm libid3tag-debugsource-0.15.1b-188.3.1.x86_64.rpm libid3tag-devel-0.15.1b-188.3.1.x86_64.rpm libid3tag0-0.15.1b-188.3.1.x86_64.rpm libid3tag0-debuginfo-0.15.1b-188.3.1.x86_64.rpm