Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-8372

Опубликовано: 01 мая 2017
Источник: debian

Описание

The mad_layer_III function in layer3.c in Underbit MAD libmad 0.15.1b, if NDEBUG is omitted, allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted audio file.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
libmadfixed0.15.1b-9package

Примечания

  • https://blogs.gentoo.org/ago/2017/04/30/libmad-assertion-failure-in-layer3-c/

  • The patch from #508133 applied in 0.15.1b-4 only partially fixed it

  • "Duplicate" with/basically same as CVE-2017-8373

  • Patch in 0.15.1b-9: libmad-0.15.1b/debian/patches/md_size.diff

Связанные уязвимости

ubuntu логотип

CVE-2017-8372

CVSS3: 4.7
ubuntu
почти 9 лет назад

The mad_layer_III function in layer3.c in Underbit MAD libmad 0.15.1b, if NDEBUG is omitted, allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted audio file.

nvd логотип

CVE-2017-8372

CVSS3: 4.7
nvd
почти 9 лет назад

The mad_layer_III function in layer3.c in Underbit MAD libmad 0.15.1b, if NDEBUG is omitted, allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted audio file.

github логотип

GHSA-qpg8-8vx5-pf3q

CVSS3: 4.7
github
больше 3 лет назад

The mad_layer_III function in layer3.c in Underbit MAD libmad 0.15.1b, if NDEBUG is omitted, allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted audio file.

suse-cvrf логотип

SUSE-SU-2022:3782-1

suse-cvrf
больше 3 лет назад

Security update for libmad