CVE-2015-9099 log

Severity Medium
Remote Yes
Type Denial of service
The lame_init_params function in lame.c in libmp3lame.a in LAME before 3.100 allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted audio file with a negative sample rate.
Group Package Affected Fixed Severity Status Ticket
AVG-330 lame 3.99.5-3 3.100-1 High Fixed FS#54859