Lucene search
+L

265 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:44 a.m.4 views

SUSE CVE-2017-9412

The unpackreadsamples function in frontend/getaudio.c in LAME 3.99.5 allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted wav file...

5.5CVSS6.7AI score0.03966EPSS
Exploits3References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:44 a.m.5 views

SUSE CVE-2017-9871

The IIIistereo function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service stack-based buffer overflow and application crash or possibly have unspecified other impact via a crafted audio file...

7.8CVSS9.8AI score0.01505EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:44 a.m.6 views

SUSE CVE-2017-9869

The IIstepone function in layer2.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted audio file...

5.5CVSS8.9AI score0.04065EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:42 a.m.6 views

SUSE CVE-2017-11720

There is a division-by-zero vulnerability in LAME 3.99.5, caused by a malformed input file...

9.8CVSS9.4AI score0.02464EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:40 a.m.5 views

SUSE CVE-2017-13712

NULL Pointer Dereference in the id3v2AddAudioDuration function in libmp3lame/id3tag.c in LAME 3.99.5 allows attackers to perform Denial of Service by triggering a NULL first argument...

7.5CVSS9.4AI score0.01713EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:38 a.m.3 views

SUSE CVE-2017-15018

LAME 3.99.5, 3.99.4, 3.99.3, 3.99.2, 3.99.1, 3.99, 3.98.4, 3.98.2 and 3.98 have a heap-based buffer over-read when handling a malformed file in k344 in vbrquantize.c...

5.5CVSS9.7AI score0.00836EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:38 a.m.8 views

SUSE CVE-2017-15019

LAME 3.99.5 has a NULL Pointer Dereference in the hipdecodeinit function within libmp3lame/mpglibinterface.c via a malformed mpg file, because of an incorrect calloc call...

7.8CVSS9.4AI score0.0105EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:38 a.m.4 views

SUSE CVE-2017-15045

LAME 3.99, 3.99.1, 3.99.2, 3.99.3, 3.99.4, 3.99.5, 3.98.4, 3.98.2 and 3.98 has a heap-based buffer over-read in fillbuffer in libmp3lame/util.c, related to lameencodebuffersamplet in libmp3lame/lame.c, a different vulnerability than CVE-2017-9410...

5.5CVSS9.8AI score0.00897EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:45 a.m.4 views

SUSE CVE-2021-25219

In BIND 9.3.0 - 9.11.35, 9.12.0 - 9.16.21, and versions 9.9.3-S1 - 9.11.35-S1 and 9.16.8-S1 - 9.16.21-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.18 of the BIND 9.17 development branch, exploitation of broken authoritative servers using a flaw in response...

5.3CVSS6.7AI score0.08001EPSS
Exploits0References23
Tenable Nessus
Tenable Nessus
added 2023/01/30 12:0 a.m.40 views

EulerOS Virtualization 3.0.2.2 : bind (EulerOS-SA-2023-1244)

According to the versions of the bind packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In BIND 9.0.0 - 9.11.21, 9.12.0 - 9.16.5, 9.17.0 - 9.17.3, also affects 9.9.3-S1 - 9.11.21-S1 of the BIND 9 Supported Preview...

8.1CVSS7AI score0.64161EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.21 views

Ubuntu: Security Advisory (USN-4780-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6AI score0.03966EPSS
Exploits10References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/01/12 9:59 p.m.36 views

Security Bulletin: A vulnerability in ISC BIND affects IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data (CVE-2021-25219)

Summary A vulnerability in ISC BIND affects IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data CVE-2021-25219. Please see the details below on how to remediate this issue. Vulnerability Details CVEID:CVE-2021-25219 DESCRIPTION: ISC BIND is vulnerable to a denial of service, caused by...

5.3CVSS5.7AI score0.08001EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/01/11 12:0 a.m.21 views

EulerOS Virtualization 2.9.0 : dhcp (EulerOS-SA-2023-1218)

According to the versions of the dhcp package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In BIND 9.0.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported...

7.5CVSS6.8AI score0.11296EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/10/09 12:0 a.m.24 views

EulerOS Virtualization 3.0.6.6 : bind (EulerOS-SA-2022-2486)

According to the versions of the bind packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In BIND 9.3.0 - 9.11.35, 9.12.0 - 9.16.21, and versions 9.9.3-S1 - 9.11.35-S1 and 9.16.8-S1 - 9.16.21-S1 of BIND Supported Preview...

5.3CVSS6.3AI score0.08001EPSS
Exploits0References2
OSV
OSV
added 2022/08/29 11:6 p.m.6 views

USN-4780-1 lame vulnerabilities

It was discovered that LAME incorrectly handled certain audio files. A remote attacker could possibly use this issue to cause a denial of service. Eight vulnerabilities CVE-2015-9099, CVE-2015-9100, CVE-2015-9101, CVE-2017-15018, CVE-2017-11720, CVE-2017-8419, CVE-2017-9412, CVE-2017-15045 only...

9.8CVSS6.8AI score0.03966EPSS
Exploits10References13
Ubuntu
Ubuntu
added 2022/08/29 11:6 p.m.32 views

USN-4780-1: LAME vulnerabilities

It was discovered that LAME incorrectly handled certain audio files. A remote attacker could possibly use this issue to cause a denial of service. Eight vulnerabilities CVE-2015-9099, CVE-2015-9100, CVE-2015-9101, CVE-2017-15018, CVE-2017-11720, CVE-2017-8419, CVE-2017-9412, CVE-2017-15045 only...

9.8CVSS6.3AI score0.03966EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2022/08/10 12:0 a.m.38 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : bind (SUSE-SU-2022:2713-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:2713-1 advisory. - CVE-2021-25219: Fixed flaw that allowed abusing lame cache to severely degrade resolver...

6.8CVSS6.7AI score0.08001EPSS
Exploits0References12
OSV
OSV
added 2022/06/06 10:37 a.m.9 views

CLSA-2022-1654511849 Fixed CVE-2021-25219 in bind

CVE-2021-25219: fix possible performance degradation by disabling lame-ttl cache...

5.3CVSS6.4AI score0.08001EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
added 2022/05/27 12:0 a.m.59 views

Security update for bind (moderate)

SUSE Security Update: Security update for bind Announcement ID: openSUSE-SU-2022:0151-1 Rating: moderate References: 1192146 1199370 Cross-References: CVE-2021-25219 CVE-2022-27114 CVSS scores: CVE-2021-25219 NVD : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2021-25219 SUSE: 5.3...

5.5CVSS6.2AI score0.08001EPSS
Exploits1References2
Rockylinux
Rockylinux
added 2022/05/17 6:52 a.m.11 views

new packages: lame

An update is available for lame. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Enterprise...

2.2AI score
Exploits0
Rows per page
Query Builder