The vulnerability of the mp4ff_read_stsc function in software for working with audio files, provided by Freeware Advanced Audio Decoder 2 (FAAD2), allows a hacker to trigger a service denial.

The vulnerability of the mp4ffreadstsc function in software for working with audio files, found in the Freeware Advanced Audio Decoder 2 FAAD2, relates to the execution of a loop without sufficient restrictions on its execution count. Exploiting this vulnerability could allow an attacker to cause...

The vulnerability of the excludedchannels() function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a intruder to compromise data integrity, gain unauthorized access to protected information, and cause service interruptions.

The vulnerability of the excludedchannels function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to the issue of data being written beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise data integrity, gain unauthorized access to...

The vulnerability of the sbr_process_channel function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a hacker to trigger a service failure.

The vulnerability of the sbrprocesschannel function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to the swapping of the zero pointer. Exploiting this vulnerability could allow a hacker to cause a service failure...

The vulnerability of the ifilter_bank function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a hacker to trigger a service failure.

The vulnerability of the ifilterbank function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to the swapping of the zero pointer. Exploiting this vulnerability could allow a hacker to cause a service failure...

The vulnerability of the calculate_gain() function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a intruder to compromise data integrity, gain unauthorized access to protected information, and cause service failure.

The vulnerability of the calculategain function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to the escape from memory buffers. Exploiting this vulnerability could allow an attacker to compromise data integrity, gain unauthorized access to protected information, and cause service...

CVE-2019-15296

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The faadresetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read is determined by ld-buffersize - words4, cast to uint32. If ld-buffersize - words4 is negative, a...

DEBIAN-CVE-2019-15296

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The faadresetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read is determined by ld-buffersize - words4, cast to uint32. If ld-buffersize - words4 is negative, a...

CVE-2019-15296

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The faadresetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read is determined by ld-buffersize - words4, cast to uint32. If ld-buffersize - words4 is negative, a...

ALPINE-CVE-2019-15296

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The faadresetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read is determined by ld-buffersize - words4, cast to uint32. If ld-buffersize - words4 is negative, a...

CVE-2019-15296

FAAD2 vulnerability CVE-2019-15296 affects Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. The faad_resetbits function in libfaad/bits.c can read a negative remaining buffer size (ld->buffer_size - words*4), leading to a buffer overflow via getdword_n, with the impact described as potential d...

Freeware Advanced Audio Decoder 2 Buffer Overflow Vulnerability (CNVD-2020-22386)

Freeware Advanced Audio Decoder 2 FAAD2 is a free advanced audio encoder. A buffer overflow vulnerability exists in Freeware Advanced Audio Decoder 2. The vulnerability originates when a networked system or product performs an operation in memory without properly validating data boundaries,...

CVE-2019-6956

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. It is a buffer over-read in psmixphase in libfaad/psdec.c...

Buffer overflow

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. It is a buffer over-read in psmixphase in libfaad/psdec.c...

CVE-2019-6956

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. It is a buffer over-read in psmixphase in libfaad/psdec.c...

CVE-2019-6956

FAAD2 2.8.8 contains CVE-2019-6956: a buffer over-read in ps_mix_phase (libfaad/ps_dec.c). Public advisories (Debian, Gentoo GLSA) link this to potential denial of service and related impacts; Debian notes several FAAD2 CVEs in older releases. The issues are fixed in later FAAD2 releases (Gentoo ...

CVE-2019-6956

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. It is a buffer over-read in psmixphase in libfaad/psdec.c...

FAAD2 Invalid Memory Address Dereference Vulnerability (CNVD-2019-07894)

Freeware Advanced Audio Decoder 2 FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder licensed under the GPLv2 license. An invalid memory address dereference vulnerability in the sbrDecodeSingleFramePS function of libfaad/sbrdec.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8 can be exploite...

FAAD2 Null Pointer Dereference Vulnerability (CNVD-2019-07896)

Freeware Advanced Audio Decoder 2 FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder licensed under the GPLv2 license. A null pointer dereference vulnerability in sbrprocesschannel in libfaad/sbrdec.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8 can be exploited by an attacker to cause a...

FAAD2 Invalid Memory Address Dereference Vulnerability (CNVD-2019-07892)

Freeware Advanced Audio Decoder 2 FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder licensed under the GPLv2 license. An invalid memory address dereference vulnerability in the hfassembly function of libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8 can be exploited by an...

DEBIAN-CVE-2018-20359

An invalid memory address dereference was discovered in the sbrDecodeSingleFramePS function of libfaad/sbrdec.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...