VYPR
Medium severity5.5NVD Advisory· Published Jun 25, 2017· Updated Jun 17, 2026

CVE-2015-9101

CVE-2015-9101

Description

The fill_buffer_resample function in util.c in libmp3lame.a in LAME 3.98.4, 3.98.2, 3.98, 3.99, 3.99.1, 3.99.2, 3.99.3, 3.99.4 and 3.99.5 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted audio file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

11
  • Lame Project/Lame10 versions
    cpe:2.3:a:lame_project:lame:3.98:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:lame_project:lame:3.98:*:*:*:*:*:*:*
    • cpe:2.3:a:lame_project:lame:3.98.2:*:*:*:*:*:*:*
    • cpe:2.3:a:lame_project:lame:3.98.4:*:*:*:*:*:*:*
    • cpe:2.3:a:lame_project:lame:3.99:*:*:*:*:*:*:*
    • cpe:2.3:a:lame_project:lame:3.99.1:*:*:*:*:*:*:*
    • cpe:2.3:a:lame_project:lame:3.99.2:*:*:*:*:*:*:*
    • cpe:2.3:a:lame_project:lame:3.99.3:*:*:*:*:*:*:*
    • cpe:2.3:a:lame_project:lame:3.99.4:*:*:*:*:*:*:*
    • cpe:2.3:a:lame_project:lame:3.99.5:*:*:*:*:*:*:*
    • (no CPE)range: 3.98.4, 3.98.2, 3.98, 3.99, 3.99.1, 3.99.2, 3.99.3, 3.99.4, 3.99.5

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.