The fill_buffer_resample function in util.c in libmp3lame.a in LAME before 3.100 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted audio file.
The fill_buffer_resample function in util.c in libmp3lame.a in LAME before 3.100 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted audio file.
https://blogs.gentoo.org/ago/2017/06/17/lame-heap-based-buffer-overflow-in-fill_buffer_resample-util-c/ https://sourceforge.net/p/lame/svn/6320/