{
  "public_date" : "2012-04-20T00:00:00Z",
  "bugzilla" : {
    "description" : "taglib: Division by zero while parsing properties of certain MP4 audio files",
    "id" : "818583",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=818583"
  },
  "cvss" : {
    "cvss_base_score" : "4.3",
    "cvss_scoring_vector" : "AV:N/AC:M/Au:N/C:N/I:N/A:P",
    "status" : "draft"
  },
  "details" : [ "VideoLAN VLC media player 2.0.1 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted MP4 file." ],
  "statement" : "This issue affects the version of the taglib package as shipped with Red Hat Enterprise Linux 6. The taglib library is used in client applications only though. Red Hat Security Response Team does not consider a user-assisted crash of a client application such as k3b or Totem to be a security issue.",
  "package_state" : [ {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Not affected",
    "package_name" : "taglib",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2012-2396\nhttps://nvd.nist.gov/vuln/detail/CVE-2012-2396" ],
  "name" : "CVE-2012-2396",
  "csaw" : false
}