4 matches found
Ubuntu 16.04 ESM : LAME vulnerabilities (USN-4780-1)
The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4780-1 advisory. It was discovered that LAME incorrectly handled certain audio files. A remote attacker could possibly use this issue to cause a denial of service. Eight...
Ubuntu: Security Advisory (USN-4780-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-4780-1: LAME vulnerabilities
It was discovered that LAME incorrectly handled certain audio files. A remote attacker could possibly use this issue to cause a denial of service. Eight vulnerabilities CVE-2015-9099, CVE-2015-9100, CVE-2015-9101, CVE-2017-15018, CVE-2017-11720, CVE-2017-8419, CVE-2017-9412, CVE-2017-15045 only...
CVE-2017-8419
CVE-2017-8419 affects LAME up to version 3.99.5, where the WAV/AIFF header uses a signed integer field for values (notably num_channels). This can enable a crafted file to trigger stack or heap buffer overflows, resulting in a denial of service and possibly other impact. The provided documents co...