The lameinitparams function in lame.c in libmp3lame.a in LAME 3.99.5 allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted audio file with a negative sample rate.
{ "binaries": [ { "binary_name": "lame", "binary_version": "3.99.5+repack1-3ubuntu1+esm2" }, { "binary_name": "lame-dbgsym", "binary_version": "3.99.5+repack1-3ubuntu1+esm2" }, { "binary_name": "lame-doc", "binary_version": "3.99.5+repack1-3ubuntu1+esm2" }, { "binary_name": "libmp3lame-dev", "binary_version": "3.99.5+repack1-3ubuntu1+esm2" }, { "binary_name": "libmp3lame0", "binary_version": "3.99.5+repack1-3ubuntu1+esm2" } ], "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "medium" }
{ "binaries": [ { "binary_name": "lame", "binary_version": "3.99.5+repack1-9build1" }, { "binary_name": "lame-dbg", "binary_version": "3.99.5+repack1-9build1" }, { "binary_name": "lame-dbgsym", "binary_version": "3.99.5+repack1-9build1" }, { "binary_name": "lame-doc", "binary_version": "3.99.5+repack1-9build1" }, { "binary_name": "libmp3lame-dev", "binary_version": "3.99.5+repack1-9build1" }, { "binary_name": "libmp3lame-dev-dbgsym", "binary_version": "3.99.5+repack1-9build1" }, { "binary_name": "libmp3lame0", "binary_version": "3.99.5+repack1-9build1" }, { "binary_name": "libmp3lame0-dbgsym", "binary_version": "3.99.5+repack1-9build1" } ], "availability": "No subscription required", "ubuntu_priority": "medium" }