Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lame project lame 3.99.5 vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2017-15019
LAME 3.99.5 has a NULL Pointer Dereference in the hip_decode_init function within libmp3lame/mpglib_interface.c via a malformed mpg file, because of an incorrect calloc call.
Lame Project Lame 3.99.5
5.5
CVSSv3
CVE-2017-15045
LAME 3.99, 3.99.1, 3.99.2, 3.99.3, 3.99.4, 3.99.5, 3.98.4, 3.98.2 and 3.98 has a heap-based buffer over-read in fill_buffer in libmp3lame/util.c, related to lame_encode_buffer_sample_t in libmp3lame/lame.c, a different vulnerability than CVE-2017-9410.
Lame Project Lame 3.99.5
5.5
CVSSv3
CVE-2015-9101
The fill_buffer_resample function in util.c in libmp3lame.a in LAME 3.98.4, 3.98.2, 3.98, 3.99, 3.99.1, 3.99.2, 3.99.3, 3.99.4 and 3.99.5 allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) via a crafted audio file.
Lame Project Lame 3.98
Lame Project Lame 3.98.2
Lame Project Lame 3.98.4
Lame Project Lame 3.99
Lame Project Lame 3.99.1
Lame Project Lame 3.99.2
Lame Project Lame 3.99.3
Lame Project Lame 3.99.4
Lame Project Lame 3.99.5
5.5
CVSSv3
CVE-2017-15018
LAME 3.99.5, 3.99.4, 3.99.3, 3.99.2, 3.99.1, 3.99, 3.98.4, 3.98.2 and 3.98 have a heap-based buffer over-read when handling a malformed file in k_34_4 in vbrquantize.c.
Lame Project Lame 3.98
Lame Project Lame 3.98.2
Lame Project Lame 3.98.4
Lame Project Lame 3.99
Lame Project Lame 3.99.1
Lame Project Lame 3.99.2
Lame Project Lame 3.99.3
Lame Project Lame 3.99.4
Lame Project Lame 3.99.5
7.8
CVSSv3
CVE-2017-8419
LAME up to and including 3.99.5 relies on the signed integer data type for values in a WAV or AIFF header, which allows remote malicious users to cause a denial of service (stack-based buffer overflow or heap-based buffer overflow) or possibly have unspecified other impact via a ...
Lame Project Lame
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36920
buffer overflow
CVE-2024-36913
CVE-2024-5497
CVE-2024-23917
CVE-2024-4956
server-side request forgery
CVE-2024-35468
SSTI
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2