Wind River Support Network

HomeDefectsLIN9-5570

Fixed

LIN9-5570 : Security Advisory - lame - CVE-2017-15019

Created: Oct 17, 2017 Updated: Nov 6, 2018

Resolved Date: Oct 31, 2018

Found In Version: 9.0.0.11

Fix Version: 9.0.0.19

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Userspace

Description

LAME 3.99.5 has a NULL Pointer Dereference in the hip_decode_init function within libmp3lame/mpglib_interface.c via a malformed mpg file, because of an incorrect calloc call.

https://nvd.nist.gov/vuln/detail/CVE-2017-15019

Other Downloads

Wind River Linux 9.0.0.19
Wind River Linux 9.0.0.20
Wind River Linux 9.0.0.21
Wind River Linux 9.0.0.22
Wind River Linux 9.0.0.23
Wind River Linux 9.0.0.24
Wind River Linux 9.0.0.25
Wind River Linux 9.0.0.26

CVEs

CVE-2017-15019