SUSE CVE-2017-9871

The IIIistereo function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service stack-based buffer overflow and application crash or possibly have unspecified other impact via a crafted audio file...

Denial Of Service (DoS)

mpg123 is vulnerable to denial of service DoS. The vulnerability exists as the IIIistereo function in libmpg123/layer3.c in mpg123 through 1.25.1 allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted audio file that is mishandled in the code for...

DEBIAN-CVE-2017-14410

A buffer over-read was discovered in IIIistereo in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an application crash, which leads to remote denial of service...

CVE-2017-14410

A buffer over-read was discovered in IIIistereo in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an application crash, which leads to remote denial of service...

CVE-2017-14410

CVE-2017-14410 is a buffer over-read in III_i_stereo (layer3.c) of mpglibDBL used by MP3Gain 1.5.2, causing a crash and remote denial of service. Mageia MGASA-2018-0326 documents fixes for this and related CVEs in MP3Gain, indicating remediation via updated mp3gain packages. Other sources (RH, OS...

UBUNTU-CVE-2017-11126

The IIIistereo function in libmpg123/layer3.c in mpg123 through 1.25.1 allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted audio file that is mishandled in the code for the "blocktype != 2" case, a similar issue to CVE-2017-9870...

CVE-2017-11126

The IIIistereo function in libmpg123/layer3.c in mpg123 through 1.25.1 allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted audio file that is mishandled in the code for the "blocktype != 2" case, a similar issue to CVE-2017-9870...

CVE-2017-11126

The IIIistereo function in libmpg123/layer3.c in mpg123 through 1.25.1 allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted audio file that is mishandled in the code for the "blocktype != 2" case, a similar issue to CVE-2017-9870...

mpg123 'III_i_stereo' denial of service vulnerability

mpg123 is a MPEG audio player and decoding library for Linux and Unix operating systems developed by software developer Michael Hipp. A security vulnerability exists in the 'IIIistereo' function in the libmpg123/layer3.c file in mpg123 versions prior to 1.25.1. A remote attacker can exploit this...

LAME 'III_i_stereo' function stack buffer overflow vulnerability

LAME is LAME team developed a set of open source MP3 audio compression software. mpglib is one of the mpg decoding library . A security vulnerability exists in the 'IIIistereo' function in the layer3.c file of mpglib in LAME version 3.99.5 and other products. A remote attacker could exploit this...

CVE-2017-9870

The IIIistereo function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted audio file that is mishandled in the code for the "blocktype == 2" case, a similar...

Design/Logic Flaw

The IIIistereo function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted audio file that is mishandled in the code for the "blocktype == 2" case, a similar...

Stack overflow

The IIIistereo function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service stack-based buffer overflow and application crash or possibly have unspecified other impact via a crafted audio file...

CVE-2017-9870

CVE-2017-9870 concerns the III_i_stereo function in layer3.c of mpglib (used by mpglib’s libmpgdecoder.a in LAME 3.99.5 and similar products). The vulnerability enables a remote attacker to trigger a buffer over-read, causing an application crash via a crafted MP3 file, specifically related to th...

CVE-2017-9871

The CVE-2017-9871 issue affects the mpglib decoder (III_i_stereo in layer3.c) used by LAME 3.99.5 and related products. The vulnerability is a stack-based buffer overflow in the MP3 decoding path that can be triggered by a crafted audio file, potentially causing an application crash or denial of ...