Mandriva Linux Security Advisory : libid3tag (MDVSA-2008:103)
Medium Nessus Plugin ID 37269
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
Descriptionfield.c in the libid3tag 0.15.0b library allows context-dependent attackers to cause a denial of service (CPU and memory consumption) via an ID3_FIELD_TYPE_STRINGLIST field that ends in '�', which triggers an infinite loop.
The updated packages have been patched to correct this.
SolutionUpdate the affected packages.