FS#55889 : [lame] [Security] denial of service (CVE-2017-15018)

FS#55889 - [lame] [Security] denial of service (CVE-2017-15018)

Attached to Project: Arch Linux
Opened by Santiago Torres (sangy) - Friday, 06 October 2017, 17:05 GMT
Last edited by Antonio Rojas (arojas) - Friday, 06 October 2017, 22:23 GMT

Task Type	Bug Report
Category	Security
Status	Closed
Assigned To	No-one
Architecture	All
Severity	Medium
Priority	Normal
Reported Version
Due in Version	Undecided
Due Date	Undecided
Percent Complete
Votes	0
Private	No

Details

Summary
=======

The package lame is vulnerable to denial of service via CVE-2017-15018.

Guidance
========

It seems that a fix for this issue will take a little bit to be tagged. For your convenience, backporting the following patch would mitigate the issue

References
==========

https://security.archlinux.org/AVG-437
https://sourceforge.net/p/lame/bugs/480/

CVE-2017-15018.patch (0.5 KiB)

This task depends upon

Closed by Antonio Rojas (arojas)
Friday, 06 October 2017, 22:23 GMT
Reason for closing: Fixed
Additional comments about closing: lame 3.99.5-4

	Tasks related to this task (0)

Duplicate tasks of this task (0)

Arch Linux

FS#55889 - [lame] [Security] denial of service (CVE-2017-15018)

Details

Loading...