7 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-9870
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The IIIistereo function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of servic...
Linux Distros Unpatched Vulnerability : CVE-2017-9869
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The IIstepone function in layer2.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service...
SUSE CVE-2017-9871
The IIIistereo function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service stack-based buffer overflow and application crash or possibly have unspecified other impact via a crafted audio file...
SUSE CVE-2017-9869
The IIstepone function in layer2.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted audio file...
PT-2017-13821 · Lame +3 · Lame +3
Name of the Vulnerable Software and Affected Versions: LAME version 3.99.5 Description: The issue is related to a NULL Pointer Dereference in the hip decode init function within libmp3lame/mpglib interface.c. This occurs when processing a malformed mpg file, due to an incorrect calloc call...
UBUNTU-CVE-2017-11720
There is a division-by-zero vulnerability in LAME 3.99.5, caused by a malformed input file...
LAME denial of service vulnerability
LAME is an MP3 encoder. A denial of service vulnerability exists in LAME 3.99.5, which can be exploited by a remote attacker to cause a denial of service via a crafted file...