Nixpkgs security tracker

Permalink CVE-2023-47466

2.9 LOW

CVSS version: 3.1
Attack vector (AV):
Attack complexity (AC):
Privileges required (PR):
User interaction (UI):
Scope (S):
Confidentiality impact (C):
Integrity impact (I):
Availability impact (A):

created 2 months, 3 weeks ago

TagLib before 2.0 allows a segmentation violation and application crash …

TagLib before 2.0 allows a segmentation violation and application crash during tag writing via a crafted WAV file in which an id3 chunk is the only valid chunk.

References

Affected products

TagLib

<2.0

Matching in nixpkgs

pkgs.taglib

Library for reading and editing audio file metadata

nixos-unstable 2.1
- nixpkgs-unstable 2.1
- nixos-unstable-small 2.1
nixos-25.11 2.1.1
- nixpkgs-25.11-darwin 2.1.1

pkgs.taglib_1

Library for reading and editing audio file metadata

nixos-unstable 1.13.1
- nixpkgs-unstable 1.13.1
- nixos-unstable-small 1.13.1
nixos-25.11 1.13.1
- nixpkgs-25.11-darwin 1.13.1

pkgs.taglib-sharp

Library for reading and writing metadata in media files

nixos-unstable 2.1.0.0
- nixpkgs-unstable 2.1.0.0
- nixos-unstable-small 2.1.0.0
nixos-25.11 2.1.0.0
- nixpkgs-25.11-darwin 2.1.0.0

pkgs.taglib_extras

Additional taglib plugins

nixos-unstable 1.0.1
- nixpkgs-unstable 1.0.1
- nixos-unstable-small 1.0.1
nixos-25.11 1.0.1
- nixpkgs-25.11-darwin 1.0.1

pkgs.kdePackages.taglib

Library for reading and editing audio file metadata

nixos-unstable 2.1
- nixpkgs-unstable 2.1
- nixos-unstable-small 2.1
nixos-25.11 2.1.1
- nixpkgs-25.11-darwin 2.1.1

pkgs.ocamlPackages.taglib

Bindings for the taglib library which provides functions for reading tags in headers of audio files

nixos-25.11 0.3.10
- nixpkgs-25.11-darwin 0.3.10

pkgs.haskellPackages.taglib

Binding to TagLib (ID3 tag library)

nixos-unstable 0.1.1
- nixpkgs-unstable 0.1.1
- nixos-unstable-small 0.1.1
nixos-25.11 0.1.1
- nixpkgs-25.11-darwin 0.1.1

pkgs.haskellPackages.htaglib

Bindings to TagLib, audio meta-data library

nixos-unstable 1.2.1
- nixpkgs-unstable 1.2.1
- nixos-unstable-small 1.2.1
nixos-25.11 1.2.1
- nixpkgs-25.11-darwin 1.2.1

pkgs.rubyPackages.taglib-ruby

None

nixos-unstable 2.0.0
- nixpkgs-unstable 2.0.0
- nixos-unstable-small 2.0.0
nixos-25.11 2.0.0

pkgs.python312Packages.pytaglib

Python bindings for the Taglib audio metadata library

nixos-unstable 3.0.1
- nixpkgs-unstable 3.0.1
- nixos-unstable-small 3.0.1
nixos-25.11 3.0.1
- nixpkgs-25.11-darwin 3.0.1

pkgs.python313Packages.pytaglib

Python bindings for the Taglib audio metadata library

nixos-unstable 3.0.1
- nixpkgs-unstable 3.0.1
- nixos-unstable-small 3.0.1
nixos-25.11 3.0.1
- nixpkgs-25.11-darwin 3.0.1

pkgs.rubyPackages_3_1.taglib-ruby

None

nixos-unstable 2.0.0
- nixpkgs-unstable 2.0.0
- nixos-unstable-small 2.0.0

pkgs.rubyPackages_3_2.taglib-ruby

None

nixos-unstable 2.0.0
- nixpkgs-unstable 2.0.0
- nixos-unstable-small 2.0.0

pkgs.rubyPackages_3_3.taglib-ruby

None

nixos-unstable 2.0.0
- nixpkgs-unstable 2.0.0
- nixos-unstable-small 2.0.0
nixos-25.11 2.0.0
- nixpkgs-25.11-darwin 2.0.0

pkgs.rubyPackages_3_4.taglib-ruby

None

nixos-unstable 2.0.0
- nixpkgs-unstable 2.0.0
- nixos-unstable-small 2.0.0
nixos-25.11 2.0.0
- nixpkgs-25.11-darwin 2.0.0

pkgs.rubyPackages_3_5.taglib-ruby

None

nixos-25.11 -
- nixpkgs-25.11-darwin 2.0.0

pkgs.rubyPackages_4_0.taglib-ruby

None

nixos-25.11 2.0.0

pkgs.chickenPackages_5.chickenEggs.taglib

Bindings to taglib

nixos-unstable 0.2.5
- nixpkgs-unstable 0.2.5
- nixos-unstable-small 0.2.5
nixos-25.11 0.2.5
- nixpkgs-25.11-darwin 0.2.5

pkgs.tests.pkg-config.defaultPkgConfigPackages.taglib

Test whether taglib-2.1 exposes pkg-config modules taglib

nixos-unstable -
- nixpkgs-unstable
- nixos-unstable-small
nixos-25.11 -
- nixpkgs-25.11-darwin

pkgs.tests.pkg-config.defaultPkgConfigPackages.taglib_c

Test whether taglib-2.1 exposes pkg-config modules taglib_c

nixos-unstable -
- nixpkgs-unstable
- nixos-unstable-small
nixos-25.11 -
- nixpkgs-25.11-darwin

Package maintainers

@ttuegel Thomas Tuegel <ttuegel@mailbox.org>
@mrkkrp Mark Karpov <markkarpov92@gmail.com>
@D4ndellion Daniel Olsen <daniel@dodsorf.as>

Suggestions search

References

Affected products

Matching in nixpkgs

pkgs.taglib

pkgs.taglib_1

pkgs.taglib-sharp

pkgs.taglib_extras

pkgs.kdePackages.taglib

pkgs.ocamlPackages.taglib

pkgs.haskellPackages.taglib

pkgs.haskellPackages.htaglib

pkgs.rubyPackages.taglib-ruby

pkgs.python312Packages.pytaglib

pkgs.python313Packages.pytaglib

pkgs.rubyPackages_3_1.taglib-ruby

pkgs.rubyPackages_3_2.taglib-ruby

pkgs.rubyPackages_3_3.taglib-ruby

pkgs.rubyPackages_3_4.taglib-ruby

pkgs.rubyPackages_3_5.taglib-ruby

pkgs.rubyPackages_4_0.taglib-ruby

pkgs.chickenPackages_5.chickenEggs.taglib

pkgs.tests.pkg-config.defaultPkgConfigPackages.taglib

pkgs.tests.pkg-config.defaultPkgConfigPackages.taglib_c

Package maintainers