The fill_buffer_resample function in util.c in libmp3lame.a in LAME before 3.100 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted audio file.
The fill_buffer_resample function in util.c in libmp3lame.a in LAME before 3.100 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted audio file.
http://www.openwall.com/lists/oss-security/2015/02/12/8