CVE-2017-13712

Опубликовано: 28 авг. 2017

Источник: debian

Описание

NULL Pointer Dereference in the id3v2AddAudioDuration function in libmp3lame/id3tag.c in LAME 3.99.5 allows attackers to perform Denial of Service by triggering a NULL first argument.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
lame	fixed	3.100-1		package
lame	no-dsa		stretch	package
lame	no-dsa		jessie	package

Примечания

https://sourceforge.net/p/lame/bugs/472/

Связанные уязвимости

CVE-2017-13712

CVSS3: 7.5

ubuntu

больше 8 лет назад

NULL Pointer Dereference in the id3v2AddAudioDuration function in libmp3lame/id3tag.c in LAME 3.99.5 allows attackers to perform Denial of Service by triggering a NULL first argument.

CVE-2017-13712

CVSS3: 3.3

redhat

около 11 лет назад

NULL Pointer Dereference in the id3v2AddAudioDuration function in libmp3lame/id3tag.c in LAME 3.99.5 allows attackers to perform Denial of Service by triggering a NULL first argument.

CVE-2017-13712

CVSS3: 7.5

nvd

больше 8 лет назад

NULL Pointer Dereference in the id3v2AddAudioDuration function in libmp3lame/id3tag.c in LAME 3.99.5 allows attackers to perform Denial of Service by triggering a NULL first argument.

GHSA-p3fq-hhf9-6f56

CVSS3: 7.5

github

больше 3 лет назад

NULL Pointer Dereference in the id3v2AddAudioDuration function in libmp3lame/id3tag.c in LAME 3.99.5 allows attackers to perform Denial of Service by triggering a NULL first argument.