CVE-2023-47466

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Name of the Vulnerable Software and Affected Versions TagLib versions prior to 2.0

Description The issue allows a segmentation violation and application crash during tag writing via a crafted WAV file in which an id3 chunk is the only valid chunk.

Recommendations For versions prior to 2.0, update to version 2.0 or later to resolve the issue.

Exploit

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALT-PU-2025-10678

AZL-62441

AZL-64466

BDU:2026-06676

CVE-2023-47466

OESA-2025-1638

SUSE-SU-2025:4501-1

Affected Products

Alt Linux

Debian

Taglib

CVE-2023-47466

Weakness Enumeration

Related Identifiers

Affected Products

References · 28