The fill_buffer_resample function in libmp3lame/util.c in LAME before 3.100 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted wav file.
The fill_buffer_resample function in libmp3lame/util.c in LAME before 3.100 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted wav file.
https://sourceforge.net/p/lame/bugs/461/ http://seclists.org/fulldisclosure/2017/Jul/63 https://www.exploit-db.com/exploits/42390/
Duplicate of CVE-2015-9101