CyberSec.Space Logo
Back to CVE Browser

CVE-2018-7263

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0470%
EPSS Percentile1.04th
PublishedFeb 20, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

The mad_decoder_run() function in decoder.c in Underbit libmad through 0.15.1b allows remote attackers to cause a denial of service (SIGABRT because of double free or corruption) or possibly have unspecified other impact via a crafted file. NOTE: this may overlap CVE-2017-11552.

Affected Platforms (CPE)

πŸ“¦
Underbit

Libmad

<= 0.15.1b

References & Advisories

πŸ”— https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870608
πŸ”— https://bugzilla.suse.com/show_bug.cgi?id=1081784
πŸ”— https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870608
πŸ”— https://bugzilla.suse.com/show_bug.cgi?id=1081784

Related Vulnerabilities

CVE-2017-83737.8

The mad_layer_III function in layer3.c in Underbit MAD libmad 0.15.1b allows remote attackers to cause a denial of service (heap-b...

CVE-2017-115526.5

mpg321.c in mpg321 0.3.2-1 does not properly manage memory for use with libmad 0.15.1b, which allows remote attackers to cause a d...

CVE-2017-83745.5

The mad_bit_skip function in bit.c in Underbit MAD libmad 0.15.1b allows remote attackers to cause a denial of service (heap-based...

CVE-2017-83724.7

The mad_layer_III function in layer3.c in Underbit MAD libmad 0.15.1b, if NDEBUG is omitted, allows remote attackers to cause a de...