MP3Gain 缓冲区错误漏洞

MP3Gain is an audio volume control application. A security vulnerability exists in MP3Gain version 1.5.2-r2 and prior versions, which stems from a read access conflict issue in the IIIdequantizesample function in mpglibDBL/layer3.c. The vulnerability can be exploited to cause a denial of service...

CVE-2018-10778

Read access violation in the IIIdequantizesample function in mpglibDBL/layer3.c in mp3gain through 1.5.2-r2 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact, a different vulnerability than CVE-2017-9872 and CVE-2017-14409...

CVE-2018-10778

Read access violation in the IIIdequantizesample function in mpglibDBL/layer3.c in mp3gain through 1.5.2-r2 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact, a different vulnerability than CVE-2017-9872 and CVE-2017-14409...

CVE-2017-14409

A buffer overflow was discovered in IIIdequantizesample in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an out-of-bounds write, which leads to remote denial of service or possibly code execution...

CVE-2017-14409

CVE-2017-14409 affects MP3Gain 1.5.2 and is triggered by a buffer overflow in III_dequantize_sample (mpglibDBL/layer3.c). The vulnerability allows an out-of-bounds write, leading to remote denial of service and potentially code execution. The description confirms the impact as DoS and possible co...

CVE-2017-14409

A buffer overflow was discovered in IIIdequantizesample in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an out-of-bounds write, which leads to remote denial of service or possibly code execution...

LAME 3.99.5 - III_dequantize_sample Stack Buffer Overflow

LAME 3.99.5 - IIIdequantizesample Stack Buffer Overflow Description: lame is a high quality MPEG Audio Layer III MP3 encoder licensed under the LGPL. Few notes before the details of this bug. Time ago a fuzz was done by Brian Carpenter and Jakub Wilk which posted the results on the debian...

LAME 3.99.5 - 'III_dequantize_sample' Stack Buffer Overflow

Description: lame is a high quality MPEG Audio Layer III MP3 encoder licensed under the LGPL. Few notes before the details of this bug. Time ago a fuzz was done by Brian Carpenter and Jakub Wilk which posted the results on the debian bugtracker. In cases like this, when upstream is not active and...

Stack overflow

The IIIdequantizesample function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service stack-based buffer overflow and application crash or possibly have unspecified other impact via a crafted audio file...

CVE-2017-9872

The IIIdequantizesample function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service stack-based buffer overflow and application crash or possibly have unspecified other impact via a crafted audio file...

CVE-2017-9872

The IIIdequantizesample function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service stack-based buffer overflow and application crash or possibly have unspecified other impact via a crafted audio file...

CVE-2017-9872

CVE-2017-9872 affects mpglib’s III_dequantize_sample in Layer3.c (used by LAME 3.99.5 and related products). Exploitation via a crafted audio file can cause a stack-based buffer overflow and application crash (denial of service). OpenSUSE security update openSUSE-2018-214 notes a fix in LAME 3.10...