CVE-2017-8419

Multiple stack and heap corruptions from malicious file

Publish date

May 2017

Identifier

CVE-2017-8419

Manufacturer

N/A

Product

Lame 3.99.5 MP3

Patched

https://sourceforge.net/p/lame/bugs/458/

Authors

Gareth Evans

Description

Multiple security bugs exist in the Lame 3.99.5 MP3 encoder wherin a malformed wav or aiff file can cause various stack or heap overflows.

CBEST
CREST STAR
CHECK IT Health Check Service
CREST
Cyber Essentials
CESG Certified Service
First - Improving Security Together
BSI ISO 9001 FS 581360
BSI ISO 27001 IS 553326
Allianz für Cyber-Sicherheit