Wind River Support Network

HomeDefectsLIN9-4558

Fixed

LIN9-4558 : Security Advisory - lame - CVE-2015-9099

Created: Jun 29, 2017 Updated: Nov 6, 2018

Resolved Date: Oct 31, 2018

Found In Version: 9.0.0.7

Fix Version: 9.0.0.19

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Userspace

Description

The lame_init_params function in lame.c in libmp3lame.a in LAME 3.99.5 allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted audio file with a negative sample rate.

https://nvd.nist.gov/vuln/detail/CVE-2015-9099

Other Downloads

Wind River Linux 9.0.0.19
Wind River Linux 9.0.0.20
Wind River Linux 9.0.0.21
Wind River Linux 9.0.0.22
Wind River Linux 9.0.0.23
Wind River Linux 9.0.0.24
Wind River Linux 9.0.0.25
Wind River Linux 9.0.0.26

CVEs

CVE-2015-9099