CVE-2017-8373

Priority
Description
The mad_layer_III function in layer3.c in Underbit MAD libmad 0.15.1b
allows remote attackers to cause a denial of service (heap-based buffer
overflow and application crash) or possibly have unspecified other impact
via a crafted audio file.
Ubuntu-Description
Agostino Sarubbo discovered that libmad incorrectly handled certain
audio files. An attacker could possibly use this issue to cause a denial
of service or possibly other unspecified impact.
Notes
Package
Upstream:released (0.15.1b-8+deb9u1)
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needs-triage)
Ubuntu 14.04 ESM (Trusty Tahr):released (0.15.1b-9ubuntu14.04.1)
Ubuntu 16.04 LTS (Xenial Xerus):released (0.15.1b-9ubuntu16.04.1)
Ubuntu 18.04 LTS (Bionic Beaver):released (0.15.1b-9ubuntu18.04.1)
More Information

Updated: 2020-09-10 05:46:09 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)