Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-9872

Опубликовано: 25 июн. 2017
Источник: ubuntu
Приоритет: low
CVSS2: 6.8
CVSS3: 7.8

Описание

The III_dequantize_sample function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted audio file.

РелизСтатусПримечание
artful

not-affected

3.99.5+repack1-9build1
bionic

not-affected

3.100-2
cosmic

not-affected

3.100-2
devel

not-affected

3.100-2
disco

not-affected

3.100-2
eoan

not-affected

3.100-2
esm-apps/xenial

not-affected

3.99.5+repack1-9build1
esm-infra-legacy/trusty

needed

esm-infra/bionic

not-affected

3.100-2
esm-infra/focal

not-affected

3.100-2

Показывать по

Ссылки на источники

6.8 Medium

CVSS2

7.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-9872

CVSS3: 3.3
redhat
больше 8 лет назад

The III_dequantize_sample function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted audio file.

nvd логотип

CVE-2017-9872

CVSS3: 7.8
nvd
больше 8 лет назад

The III_dequantize_sample function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted audio file.

debian логотип

CVE-2017-9872

CVSS3: 7.8
debian
больше 8 лет назад

The III_dequantize_sample function in layer3.c in mpglib, as used in l ...

github логотип

GHSA-cp24-mp3r-g87f

CVSS3: 7.8
github
больше 3 лет назад

The III_dequantize_sample function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted audio file.

fstec логотип

BDU:2019-01637

CVSS3: 7.8
fstec
больше 8 лет назад

Уязвимость функции III_Afficantize_sample приложения для кодирования аудио LAME, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю вызвать отказ в обслуживании

6.8 Medium

CVSS2

7.8 High

CVSS3