10 matches found
Advisory ROSA-SA-2021-1877
Software: libmad 0.15.1b OS: Cobalt 7.9 CVE-ID: CVE-2018-7263 CVE-Crit: CRITICAL CVE-DESC: The maddecoderrun function in decoder.c in Underbit libmad before 0.15.1b allows remote attackers to cause a denial of service SIGABRT due to double release or corruption or possibly have unspecified other...
[SECURITY] Fedora 28 Update: libmad-0.15.1b-26.fc28
MAD is a high-quality MPEG audio decoder. It currently supports MPEG-1 and the MPEG-2 extension to Lower Sampling Frequencies, as well as the so-called MPEG 2.5 format. All three audio layers Layer I, Layer II, and Layer III a.k.a. MP3 are fully implemented...
CVE-2017-11552
mpg321.c in mpg321 0.3.2-1 does not properly manage memory for use with libmad 0.15.1b, which allows remote attackers to cause a denial of service memory corruption seen in a crash in the maddecoderrun function in decoder.c in libmad via a crafted MP3 file...
libmad 0.15.1b - mp3 Memory Corruption
libmad 0.15.1b - mp3 Memory Corruption libmad memory corruption vulnerability ================ Author : qflb.wu =============== Introduction: ============= libmad is a high-quality MPEG audio decoder capable of 24-bit output. Affected version: ===== 0.15.1b Vulnerability Description:...
Heap overflow
The madlayerIII function in layer3.c in Underbit MAD libmad 0.15.1b allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted audio file...
CVE-2017-8373
The madlayerIII function in layer3.c in Underbit MAD libmad 0.15.1b allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted audio file...
CVE-2017-8373
The madlayerIII function in layer3.c in Underbit MAD libmad 0.15.1b allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted audio file...
CVE-2017-8372
The madlayerIII function in layer3.c in Underbit MAD libmad 0.15.1b, if NDEBUG is omitted, allows remote attackers to cause a denial of service assertion failure and application exit via a crafted audio file...
CVE-2017-8372
CVE-2017-8372 affects Underbit MAD libmad 0.15.1b: the mad_layer_III function in layer3.c can trigger an assertion failure and application exit (DoS) when NDEBUG is omitted and a crafted audio file is processed. Connected advisories note multiple vendor patches (e.g., Debian DLA-1380-1; SUSE/SUSE...
CVE-2017-8374
CVE-2017-8374 affects libmad (Underbit MAD) via the mad_bit_skip function in bit.c, where a crafted audio file can cause a heap-based buffer over-read and application crash. Connected advisories show the issue being fixed in libmad updates across distributions: openSUSE openSUSE-2018-205 notes a ...