Alsaplayer
Approved changes feed: RSS · Atom
cpe:2.3:a:andy_lo-a-foe:alsaplayer:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Andy Lo A Foe (6ccc7e76-4451-57d2-9830-0b1771de92f9) |
|---|---|
| Product | Alsaplayer (3cc98632-078e-5895-b488-f17f2c05a5d8) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/alsaplayer/alsaplayer |
purl2cpe | 2026-06-01 10:12:26.312375 |
pkg:sourceforge/alsaplayer |
purl2cpe | 2026-06-01 10:12:26.312377 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2006-4089 |
vulnerable | 2026-06-08 04:49:10.923787 |
Details available
Multiple buffer overflows in Andy Lo-A-Foe AlsaPlayer 0.99.76 and earlier allow remote attackers to cause a denial of service (application crash), or have other unknown impact, via (1) a long Location field sent by a web server, which triggers an overflow in the reconnect function in reader/http/http.c; (2) a long URL sent by a web server when AlsaPlayer is seeking a media file for the playlist, which triggers overflows in new_list_item and CbUpdated in interface/gtk/PlaylistWindow.cpp; and (3) a long response sent by a CDDB server, which triggers an overflow in cddb_lookup in input/ccda/cdda_engine.c.
Published: 2006-08-11T10:00:00.000Z
Updated: 2024-08-07T18:57:45.886Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.