CVE-2015-9099 log

Source
Severity Medium
Remote Yes
Type Denial of service
Description
The lame_init_params function in lame.c in libmp3lame.a in LAME before 3.100 allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted audio file with a negative sample rate.
Group Package Affected Fixed Severity Status Ticket
AVG-330 lame 3.99.5-3 3.100-1 High Fixed FS#54859
References
http://www.openwall.com/lists/oss-security/2015/02/12/8