Описание
The mad_decoder_run() function in decoder.c in Underbit libmad through 0.15.1b allows remote attackers to cause a denial of service (SIGABRT because of double free or corruption) or possibly have unspecified other impact via a crafted file. NOTE: this may overlap CVE-2017-11552.
Примечания
Seems like a duplicate of CVE-2017-11552 relates to the issue raised in
https://bugs.debian.org/870608
https://bugzilla.suse.com/show_bug.cgi?id=1081784
MITRE stated, that "[...] However, if there are two different code
paths by which libmad is used incorrectly, and both code paths result
in "double free or corruption" errors, then we would represent this
with two CVEs."
EPSS
Связанные уязвимости
The mad_decoder_run() function in decoder.c in Underbit libmad through 0.15.1b allows remote attackers to cause a denial of service (SIGABRT because of double free or corruption) or possibly have unspecified other impact via a crafted file. NOTE: this may overlap CVE-2017-11552.
The mad_decoder_run() function in decoder.c in Underbit libmad through 0.15.1b allows remote attackers to cause a denial of service (SIGABRT because of double free or corruption) or possibly have unspecified other impact via a crafted file. NOTE: this may overlap CVE-2017-11552.
The mad_decoder_run() function in decoder.c in Underbit libmad through 0.15.1b allows remote attackers to cause a denial of service (SIGABRT because of double free or corruption) or possibly have unspecified other impact via a crafted file. NOTE: this may overlap CVE-2017-11552.
Low: GStreamer, libmad, and SDL security, bug fix, and enhancement update
EPSS