CVE-2017-9412 log
| Source |
|
| Severity | Medium |
| Remote | Yes |
| Type | Denial of service |
| Description | The unpack_read_samples function in frontend/get_audio.c in LAME before 3.100-1 allows remote attackers to cause a denial of service (invalid memory read and application crash) via a crafted wav file. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-330 | lame | 3.99.5-3 | 3.100-1 | High | Fixed | FS#54859 |
| References |
|---|
https://sourceforge.net/p/lame/bugs/463 http://seclists.org/fulldisclosure/2017/Jul/63 https://www.exploit-db.com/exploits/42390/ |