AVG-437

Package lame
Status Fixed
Severity Medium
Type denial of service
Affected 3.99.5-3
Fixed 3.99.5-4
Current 3.100-2 [extra]
Ticket FS#55889
Created Thu Oct 5 16:31:14 2017
Issue Severity Remote Type Description
CVE-2017-15018 Medium Yes Denial of service
A heap-based buffer over-read vulnerability has been discovered in LAME before 3.100 in the k_34_4 function in vbrquantize.c while handling a malformed file.
Date Advisory Package Description
09 Oct 2017 ASA-201710-11 lame denial of service