View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2017-8372 severity low: SUSE including 3 source package names (libmad-devel-0.15.1b-150000.5.3.1, libmad0-0.15.1b-150000.5.3.1, libmad0-32bit-0.15.1b-150000.5.3.1), 61 product×package rows across 31 product lines (SUSE CaaS Platform 4.0, SUSE Enterprise Storage 6, … (31 product lines)): Fixed 61.
The mad_layer_III function in layer3.c in Underbit MAD libmad 0.15.1b, if NDEBUG is omitted, allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted audio file.