SUSE CVE-2017-9870

The IIIistereo function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted audio file that is mishandled in the code for the "blocktype == 2" case, a similar...

DEBIAN-CVE-2017-14406

A NULL pointer dereference was discovered in syncbuffer in interface.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes a segmentation fault and application crash, which leads to remote denial of service...

LAME 'III_i_stereo' Denial of Service Vulnerability

LAME is LAME team developed a set of open source MP3 audio compression software. mpglib is one of the mpg decoding library . A security vulnerability exists in the 'IIIistereo' function in the layer3.c file of mpglib in LAME version 3.99.5 and other products. A remote attacker can exploit this...

UBUNTU-CVE-2017-9871

The IIIistereo function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service stack-based buffer overflow and application crash or possibly have unspecified other impact via a crafted audio file...