27 matches found
EUVD-2017-18779
Malware in sbrugna...
EUVD-2017-6520
Malware in sbrugna...
EUVD-2017-3330
Malware in sbrugna...
EUVD-2017-17370
Malware in sbrugna...
EUVD-2017-18780
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2017-9871
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The IIIistereo function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of servic...
SUSE CVE-2017-8419
LAME through 3.99.5 relies on the signed integer data type for values in a WAV or AIFF header, which allows remote attackers to cause a denial of service stack-based buffer overflow or heap-based buffer overflow or possibly have unspecified other impact via a crafted file, as demonstrated by...
LAME Stack Buffer Overflow Vulnerability
LAME is LAME team developed a set of open source MP3 audio compression software . A stack buffer overflow vulnerability exists in the frontend/getaudio.c file in LAME version 3.99.5. A remote attacker could exploit this vulnerability to cause a denial of service...
CVE-2017-15046
LAME 3.99.5, 3.99.4, 3.98.4, 3.98.2, 3.98 and 3.97 have a stack-based buffer overflow in unpackreadsamples in frontend/getaudio.c, a different vulnerability than CVE-2017-9412...
CVE-2017-15046
LAME 3.99.5, 3.99.4, 3.98.4, 3.98.2, 3.98 and 3.97 have a stack-based buffer overflow in unpackreadsamples in frontend/getaudio.c, a different vulnerability than CVE-2017-9412...
CVE-2017-15045
LAME 3.99, 3.99.1, 3.99.2, 3.99.3, 3.99.4, 3.99.5, 3.98.4, 3.98.2 and 3.98 has a heap-based buffer over-read in fillbuffer in libmp3lame/util.c, related to lameencodebuffersamplet in libmp3lame/lame.c, a different vulnerability than CVE-2017-9410...
PT-2017-13832 · Lame +2 · Lame +2
Name of the Vulnerable Software and Affected Versions: LAME versions 3.98 through 3.99.5 Description: The issue is a heap-based buffer over-read in the fill buffer function in libmp3lame/util.c, related to lame encode buffer sample t in libmp3lame/lame.c. Recommendations: For LAME versions 3.98...
CVE-2017-13712
NULL Pointer Dereference in the id3v2AddAudioDuration function in libmp3lame/id3tag.c in LAME 3.99.5 allows attackers to perform Denial of Service by triggering a NULL first argument...
LAME denial of service vulnerability
LAME is LAME team developed a set of open source MP3 audio compression software . A security vulnerability exists in LAME version 3.99.5. An attacker can exploit this vulnerability to cause a denial of service except for a zero error with a malformed input file...
UBUNTU-CVE-2017-9412
The unpackreadsamples function in frontend/getaudio.c in LAME 3.99.5 allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted wav file...
ALPINE-CVE-2017-9412
The unpackreadsamples function in frontend/getaudio.c in LAME 3.99.5 allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted wav file...
DEBIAN-CVE-2017-9412
The unpackreadsamples function in frontend/getaudio.c in LAME 3.99.5 allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted wav file...
LAME fill_buffer_resample function denial of service vulnerability
LAME is an open source MP3 audio compression software. A security vulnerability in the LAME libmp3lame.a/util.c/fillbufferresample function allows remote attackers to exploit the vulnerability by submitting a special file that induces the user to parse it, which can crash the application...
CVE-2017-9871
The IIIistereo function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service stack-based buffer overflow and application crash or possibly have unspecified other impact via a crafted audio file...
ALPINE-CVE-2015-9099
The lameinitparams function in lame.c in libmp3lame.a in LAME 3.99.5 allows remote attackers to cause a denial of service invalid read and application crash via a crafted audio file with a negative sample rate...