CVE-2017-8419
published 2017-05-02CVE-2017-8419: LAME through 3.99.5 relies on the signed integer data type for values in a WAV or AIFF header, which allows remote attackers to cause a denial of service…
PriorityP335high7.8CVSS 3.0
AVLACLPRNUIRSUCHIHAH
EPSS
1.57%
72.3th percentile
LAME through 3.99.5 relies on the signed integer data type for values in a WAV or AIFF header, which allows remote attackers to cause a denial of service (stack-based buffer overflow or heap-based buffer overflow) or possibly have unspecified other impact via a crafted file, as demonstrated by mishandling of num_channels.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | lame | < lame 3.99.5+repack1-7 (bookworm) | lame 3.99.5+repack1-7 (bookworm) |
| lame_project | lame | <= 3.99.5 | — |
| lame_project | lame | >= 0 < 3.99.5+repack1-7 | 3.99.5+repack1-7 |
| lame_project | lame | >= 0 < 3.99.5+repack1-7 | 3.99.5+repack1-7 |
| lame_project | lame | >= 0 < 3.99.5+repack1-7 | 3.99.5+repack1-7 |
| lame_project | lame | >= 0 < 3.99.5+repack1-7 | 3.99.5+repack1-7 |
| lame_project | lame | >= 0 < 3.99.5+repack1-3ubuntu1+esm3 | 3.99.5+repack1-3ubuntu1+esm3 |
| lame_project | lame | >= 0 < 3.99.5+repack1-9ubuntu0.1~esm2 | 3.99.5+repack1-9ubuntu0.1~esm2 |
CVSS provenance
nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv7.8HIGH
vendor_debian7.8HIGH
vendor_redhat7.8HIGH
vendor_ubuntu5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
lame vulnerabilities
osv·2022-08-29·CVSS 5.5
CVE-2015-9099 [MEDIUM] lame vulnerabilities
lame vulnerabilities
It was discovered that LAME incorrectly handled certain audio files. A
remote attacker could possibly use this issue to cause a denial of service. Eight
vulnerabilities (CVE-2015-9099, CVE-2015-9100, CVE-2015-9101, CVE-2017-15018,
CVE-2017-11720, CVE-2017-8419, CVE-2017-9412, CVE-2017-15045) only affected Ubuntu 14.04
ESM, two vulnerabilities (CVE-2017-9410 and CVE-2017-9411) only affected Ubuntu
16.04 ESM, and one vulnerability (CVE-2017-15019) affected both Ubuntu 14.04
ESM and Ubuntu 16.04.
GHSA
GHSA-fg7v-43m7-5p33: LAME through 3
ghsa_unreviewed·2022-05-17
CVE-2017-8419 [HIGH] CWE-119 GHSA-fg7v-43m7-5p33: LAME through 3
LAME through 3.99.5 relies on the signed integer data type for values in a WAV or AIFF header, which allows remote attackers to cause a denial of service (stack-based buffer overflow or heap-based buffer overflow) or possibly have unspecified other impact via a crafted file, as demonstrated by mishandling of num_channels.
OSV
CVE-2017-8419: LAME through 3
osv·2017-05-02·CVSS 7.8
CVE-2017-8419 [HIGH] CVE-2017-8419: LAME through 3
LAME through 3.99.5 relies on the signed integer data type for values in a WAV or AIFF header, which allows remote attackers to cause a denial of service (stack-based buffer overflow or heap-based buffer overflow) or possibly have unspecified other impact via a crafted file, as demonstrated by mishandling of num_channels.
Ubuntu
LAME vulnerabilities
vendor_ubuntu·2022-08-29·CVSS 5.5
CVE-2017-13712 [MEDIUM] LAME vulnerabilities
Title: LAME vulnerabilities
Summary: Several security issues were fixed in LAME.
It was discovered that LAME incorrectly handled certain audio files. A
remote attacker could possibly use this issue to cause a denial of service. Eight
vulnerabilities (CVE-2015-9099, CVE-2015-9100, CVE-2015-9101, CVE-2017-15018,
CVE-2017-11720, CVE-2017-8419, CVE-2017-9412, CVE-2017-15045) only affected Ubuntu 14.04
ESM, two vulnerabilities (CVE-2017-9410 and CVE-2017-9411) only affected Ubuntu
16.04 ESM, and one vulnerability (CVE-2017-15019) affected both Ubuntu 14.04
ESM and Ubuntu 16.04.
Instructions: In general, a standard system update will make all the necessary changes.
Debian
CVE-2017-8419: lame - LAME through 3.99.5 relies on the signed integer data type for values in a WAV o...
vendor_debian·2017·CVSS 7.8
CVE-2017-8419 [HIGH] CVE-2017-8419: lame - LAME through 3.99.5 relies on the signed integer data type for values in a WAV o...
LAME through 3.99.5 relies on the signed integer data type for values in a WAV or AIFF header, which allows remote attackers to cause a denial of service (stack-based buffer overflow or heap-based buffer overflow) or possibly have unspecified other impact via a crafted file, as demonstrated by mishandling of num_channels.
Scope: local
bookworm: resolved (fixed in 3.99.5+repack1-7)
bullseye: resolved (fixed in 3.99.5+repack1-7)
forky: resolved (fixed in 3.99.5+repack1-7)
sid: resolved (fixed in 3.99.5+repack1-7)
trixie: resolved (fixed in 3.99.5+repack1-7)
Red Hat
lame: Multiple vulnerabilities
vendor_redhat·2015-02-05·CVSS 7.8
CVE-2017-8419 [HIGH] lame: Multiple vulnerabilities
lame: Multiple vulnerabilities
LAME through 3.99.5 relies on the signed integer data type for values in a WAV or AIFF header, which allows remote attackers to cause a denial of service (stack-based buffer overflow or heap-based buffer overflow) or possibly have unspecified other impact via a crafted file, as demonstrated by mishandling of num_channels.
Package: lame (Red Hat Enterprise Linux 9) - Affected
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2015-9099 CVE-2015-9100 CVE-2017-8419 CVE-2017-9410 CVE-2017-9411 CVE-2017-9412 CVE-2017-11720 CVE-2017-13712 CVE-2017-15018 CVE-2017-15019 CVE-2017-15045 CVE-2017-15046 lame: Multiple vulnerabili
bugzilla·2017-07-12·CVSS 5.5
CVE-2015-9099 [MEDIUM] CVE-2015-9099 CVE-2015-9100 CVE-2017-8419 CVE-2017-9410 CVE-2017-9411 CVE-2017-9412 CVE-2017-11720 CVE-2017-13712 CVE-2017-15018 CVE-2017-15019 CVE-2017-15045 CVE-2017-15046 lame: Multiple vulnerabili
CVE-2015-9099 CVE-2015-9100 CVE-2017-8419 CVE-2017-9410 CVE-2017-9411 CVE-2017-9412 CVE-2017-11720 CVE-2017-13712 CVE-2017-15018 CVE-2017-15019 CVE-2017-15045 CVE-2017-15046 lame: Multiple vulnerabilities
CVE-2015-9099
The lame_init_params function in lame.c in libmp3lame.a in LAME 3.99.5 allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted audio file with a negative sample rate.
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775959
CVE-2015-9100
The fill_buffer_resample function in util.c in libmp3lame.a in LAME 3.99.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted audio file.
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777160
https://bugs.debian.org/cgi-b
Bugzilla
CVE-2015-9099 CVE-2015-9100 CVE-2017-11720 CVE-2017-13712 CVE-2017-15018 CVE-2017-15019 CVE-2017-15045 CVE-2017-15046 CVE-2017-8419 CVE-2017-9410 CVE-2017-9411 CVE-2017-9412 lame: Multiple vulnerabili
bugzilla·2017-07-12·CVSS 5.5
CVE-2015-9099 [MEDIUM] CVE-2015-9099 CVE-2015-9100 CVE-2017-11720 CVE-2017-13712 CVE-2017-15018 CVE-2017-15019 CVE-2017-15045 CVE-2017-15046 CVE-2017-8419 CVE-2017-9410 CVE-2017-9411 CVE-2017-9412 lame: Multiple vulnerabili
CVE-2015-9099 CVE-2015-9100 CVE-2017-11720 CVE-2017-13712 CVE-2017-15018 CVE-2017-15019 CVE-2017-15045 CVE-2017-15046 CVE-2017-8419 CVE-2017-9410 CVE-2017-9411 CVE-2017-9412 lame: Multiple vulnerabilities [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please al
Bugzilla
CVE-2015-9099 CVE-2015-9100 CVE-2017-11720 CVE-2017-13712 CVE-2017-15018 CVE-2017-15019 CVE-2017-15045 CVE-2017-15046 CVE-2017-9410 CVE-2017-9411 CVE-2017-9412 CVE-2017-8419 lame: Multiple vulnerabili
bugzilla·2017-07-12·CVSS 5.5
CVE-2015-9099 [MEDIUM] CVE-2015-9099 CVE-2015-9100 CVE-2017-11720 CVE-2017-13712 CVE-2017-15018 CVE-2017-15019 CVE-2017-15045 CVE-2017-15046 CVE-2017-9410 CVE-2017-9411 CVE-2017-9412 CVE-2017-8419 lame: Multiple vulnerabili
CVE-2015-9099 CVE-2015-9100 CVE-2017-11720 CVE-2017-13712 CVE-2017-15018 CVE-2017-15019 CVE-2017-15045 CVE-2017-15046 CVE-2017-9410 CVE-2017-9411 CVE-2017-9412 CVE-2017-8419 lame: Multiple vulnerabilities [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of epel-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also m
2017-05-02
Published