You wrote: > ================ > Author : qflb.wu > =============== > > > Introduction: > ============= > libmad is a high-quality MPEG audio decoder capable of 24-bit output. > > > Affected version: > ===== > 0.15.1b Not affected. The bug is not in libmad, but in mpg321. > Vulnerability Description: > ========================== > the mad_decoder_run function in decoder.c in libmad 0.15.1b can cause > a denial of service(memory corruption) via a crafted mp3 file. Not correct. > I found this bug when I test mpg321 0.3.2 which used the libmad > library. mpg321 is the culprit here. > ./mpg321 libmad_0.15.1b_memory_corruption.mp3 > > >
Source: Gmail -> IFTTT-> Blogger
No comments:
Post a Comment