11 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-9870
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The IIIistereo function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of servic...
Linux Distros Unpatched Vulnerability : CVE-2017-9869
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The IIstepone function in layer2.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service...
SUSE CVE-2017-9871
The IIIistereo function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service stack-based buffer overflow and application crash or possibly have unspecified other impact via a crafted audio file...
SUSE CVE-2017-9869
The IIstepone function in layer2.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted audio file...
LAME Stack Buffer Overflow Vulnerability
LAME is LAME team developed a set of open source MP3 audio compression software . A stack buffer overflow vulnerability exists in the frontend/getaudio.c file in LAME version 3.99.5. A remote attacker could exploit this vulnerability to cause a denial of service...
PT-2017-13821 · Lame +3 · Lame +3
Name of the Vulnerable Software and Affected Versions: LAME version 3.99.5 Description: The issue is related to a NULL Pointer Dereference in the hip decode init function within libmp3lame/mpglib interface.c. This occurs when processing a malformed mpg file, due to an incorrect calloc call...
LAME denial of service vulnerability
LAME is LAME team developed a set of open source MP3 audio compression software . A security vulnerability exists in LAME version 3.99.5. An attacker can exploit this vulnerability to cause a denial of service except for a zero error with a malformed input file...
UBUNTU-CVE-2017-11720
There is a division-by-zero vulnerability in LAME 3.99.5, caused by a malformed input file...
DEBIAN-CVE-2015-9100
The fillbufferresample function in util.c in libmp3lame.a in LAME 3.99.5 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted audio file...
PT-2017-7547 · Lame +3 · Lame +3
Name of the Vulnerable Software and Affected Versions: LAME version 3.99.5 Description: The issue allows remote attackers to cause a denial of service, resulting in a NULL pointer dereference and application crash, via a crafted audio file. This is due to a problem in the fill buffer resample...
LAME denial of service vulnerability
LAME is an MP3 encoder. A denial of service vulnerability exists in LAME 3.99.5, which can be exploited by a remote attacker to cause a denial of service via a crafted file...