VYPR
Medium severity5.5NVD Advisory· Published Oct 5, 2017· Updated Jun 17, 2026

CVE-2017-15018

CVE-2017-15018

Description

LAME 3.99.5, 3.99.4, 3.99.3, 3.99.2, 3.99.1, 3.99, 3.98.4, 3.98.2 and 3.98 have a heap-based buffer over-read when handling a malformed file in k_34_4 in vbrquantize.c.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • Lame Project/Lame9 versions
    cpe:2.3:a:lame_project:lame:3.98:*:*:*:*:*:*:*+ 8 more
    • cpe:2.3:a:lame_project:lame:3.98:*:*:*:*:*:*:*
    • cpe:2.3:a:lame_project:lame:3.98.2:*:*:*:*:*:*:*
    • cpe:2.3:a:lame_project:lame:3.98.4:*:*:*:*:*:*:*
    • cpe:2.3:a:lame_project:lame:3.99:*:*:*:*:*:*:*
    • cpe:2.3:a:lame_project:lame:3.99.1:*:*:*:*:*:*:*
    • cpe:2.3:a:lame_project:lame:3.99.2:*:*:*:*:*:*:*
    • cpe:2.3:a:lame_project:lame:3.99.3:*:*:*:*:*:*:*
    • cpe:2.3:a:lame_project:lame:3.99.4:*:*:*:*:*:*:*
    • cpe:2.3:a:lame_project:lame:3.99.5:*:*:*:*:*:*:*
  • Range: 3.99.5, 3.98.4, 3.98.2, 3.98, 3.99.4, 3.99.3, 3.99.2, 3.99.1, 3.99

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.

CVE-2017-15018 · Medium · VYPR