Test ID:	1.3.6.1.4.1.25623.1.1.10.2017.0434
Category:	Mageia Linux Local Security Checks
Title:	Mageia: Security Advisory (MGASA-2017-0434)
Summary:	The remote host is missing an update for the 'lame' package(s) announced via the MGASA-2017-0434 advisory.
Description:	Summary: The remote host is missing an update for the 'lame' package(s) announced via the MGASA-2017-0434 advisory. Vulnerability Insight: LAME 3.100 has been released including fixes to security vulnerabilities. Note the MP3 patents have expired. Affected Software/OS: 'lame' package(s) on Mageia 5, Mageia 6. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-11720 https://blogs.gentoo.org/ago/2017/06/17/lame-divide-by-zero-in-parse_wave_header-get_audio-c/ https://bugs.debian.org/777159 https://sourceforge.net/p/lame/bugs/460/ Common Vulnerability Exposure (CVE) ID: CVE-2017-13712 BugTraq ID: 100525 http://www.securityfocus.com/bid/100525 https://sourceforge.net/p/lame/bugs/472/ Common Vulnerability Exposure (CVE) ID: CVE-2017-15019 https://sourceforge.net/p/lame/bugs/477/ Common Vulnerability Exposure (CVE) ID: CVE-2017-9410 Common Vulnerability Exposure (CVE) ID: CVE-2017-9411 Common Vulnerability Exposure (CVE) ID: CVE-2017-9412 https://www.exploit-db.com/exploits/42390/ http://seclists.org/fulldisclosure/2017/Jul/63 Common Vulnerability Exposure (CVE) ID: CVE-2017-9872 BugTraq ID: 99270 http://www.securityfocus.com/bid/99270 https://www.exploit-db.com/exploits/42259/ https://blogs.gentoo.org/ago/2017/06/17/lame-stack-based-buffer-overflow-in-iii_dequantize_sample-layer3-c/
Copyright	Copyright (C) 2022 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.