265 matches found
CVE-2021-25219 Lame cache can be abused to severely degrade resolver performance
In BIND 9.3.0 - 9.11.35, 9.12.0 - 9.16.21, and versions 9.9.3-S1 - 9.11.35-S1 and 9.16.8-S1 - 9.16.21-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.18 of the BIND 9.17 development branch, exploitation of broken authoritative servers using a flaw in response...
CVE-2021-25219
In BIND 9.3.0 - 9.11.35, 9.12.0 - 9.16.21, and versions 9.9.3-S1 - 9.11.35-S1 and 9.16.8-S1 - 9.16.21-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.18 of the BIND 9.17 development branch, exploitation of broken authoritative servers using a flaw in response...
CVE-2021-25219
In BIND 9.3.0 - 9.11.35, 9.12.0 - 9.16.21, and versions 9.9.3-S1 - 9.11.35-S1 and 9.16.8-S1 - 9.16.21-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.18 of the BIND 9.17 development branch, exploitation of broken authoritative servers using a flaw in response...
CVE-2021-25219
In BIND 9.3.0 - 9.11.35, 9.12.0 - 9.16.21, and versions 9.9.3-S1 - 9.11.35-S1 and 9.16.8-S1 - 9.16.21-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.18 of the BIND 9.17 development branch, exploitation of broken authoritative servers using a flaw in response...
UBUNTU-CVE-2021-25219
In BIND 9.3.0 - 9.11.35, 9.12.0 - 9.16.21, and versions 9.9.3-S1 - 9.11.35-S1 and 9.16.8-S1 - 9.16.21-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.18 of the BIND 9.17 development branch, exploitation of broken authoritative servers using a flaw in response...
Denial Of Service (DoS)
lame is vulnerable to denial of service DoS. The vulnerability exists as the unpackreadsamples function in frontend/getaudio.c in LAME 3.99.5 allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted wav file...
Denial Of Service (DoS)
lame is vulnerable to denial of service. An attacker is able to crash the application, and potentially execute arbitrary code on the system due to a division-by-zero vulnerability caused by a malicious input file...
Denial Of Service (DoS)
lame is vulnerable to denial of service DoS. The vulnerability exists as the fillbufferresample function in util.c in libmp3lame.a in LAME 3.99.5 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted audio file...
Denial Of Service (DoS)
lame is vulnerable to denial of service DoS. The vulnerability exists as the lameinitparams function in lame.c in libmp3lame.a in LAME 3.99.5 allows remote attackers to cause a denial of service invalid read and application crash via a crafted audio file with a negative sample rate...
lame/fuzzer-encoder: Heap-buffer-overflow in do_copy_buffer
Project: https://svn.code.sf.net/p/lame/svn/trunk/lame Detailed report: https://oss-fuzz.com/testcase?key=5717291922096128 Project: lame Fuzzer: libFuzzerlamefuzzer-encoder Fuzz target binary: fuzzer-encoder Job Type: libfuzzerasanlame Platform Id: linux Crash Type: Heap-buffer-overflow WRITE Cra...
openSUSE Security Update : lame (openSUSE-2018-214)
This update for lame fixes the following issues : Lame was updated to version 3.100 : - Improved detection of MPEG audio data in RIFF WAVE files. sf3545112 Invalid sampling detection - New switch --gain , range -20.0 to +12.0, a more convenient way to apply Gain adjustment in decibels, than the u...
openSUSE: Security Advisory for lame (openSUSE-SU-2018:0544-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for lame (important)
This update for lame fixes the following issues: Lame was updated to version 3.100: Improved detection of MPEG audio data in RIFF WAVE files. sf3545112 Invalid sampling detection New switch --gain decibel, range -20.0 to +12.0, a more convenient way to apply Gain adjustment in decibels, than the...
Security update for lame (important)
This update for lame fixes the following issues: Lame was updated to version 3.100: Improved detection of MPEG audio data in RIFF WAVE files. sf3545112 Invalid sampling detection New switch --gain decibel, range -20.0 to +12.0, a more convenient way to apply Gain adjustment in decibels, than the...
OPENSUSE-SU-2018:0543-1 Security update for lame
This update for lame fixes the following issues: Lame was updated to version 3.100: Improved detection of MPEG audio data in RIFF WAVE files. sf3545112 Invalid sampling detection New switch --gain , range -20.0 to +12.0, a more convenient way to apply Gain adjustment in decibels, than the use of...
OPENSUSE-SU-2018:0544-1 Security update for lame
This update for lame fixes the following issues: Lame was updated to version 3.100: Improved detection of MPEG audio data in RIFF WAVE files. sf3545112 Invalid sampling detection New switch --gain , range -20.0 to +12.0, a more convenient way to apply Gain adjustment in decibels, than the use of...
Fedora 27 : lame (2017-2e2dc86bc6)
Update to 3.100 1470202, 1505107 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 703...
Updated lame packages fix security vulnerabilities
LAME 3.100 has been released including fixes to security vulnerabilities. Note the MP3 patents have expired...
MGASA-2017-0434 Updated lame packages fix security vulnerabilities
LAME 3.100 has been released including fixes to security vulnerabilities. Note the MP3 patents have expired...
Fedora Update for lame FEDORA-2017-38830f1443
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...