PT-2017-13832 · Lame +2 · Lame +2

Name of the Vulnerable Software and Affected Versions: LAME versions 3.98 through 3.99.5 Description: The issue is a heap-based buffer over-read in the fill buffer function in libmp3lame/util.c, related to lame encode buffer sample t in libmp3lame/lame.c. Recommendations: For LAME versions 3.98...