CVE-2018-19503

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.1. There was a stack-based buffer overflow in the function calculategain in libfaad/sbrhfadj.c...

CVE-2018-19502

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.1. There was a heap-based buffer overflow in the function excludedchannels in libfaad/syntax.c...

CVE-2018-19504

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.1. There is a NULL pointer dereference in ifilterbank in libfaad/filtbank.c...

CVE-2018-19504

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.1. There is a NULL pointer dereference in ifilterbank in libfaad/filtbank.c...

CVE-2018-19503

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.1. There was a stack-based buffer overflow in the function calculategain in libfaad/sbrhfadj.c...

CVE-2018-19504

CVE-2018-19504 affects FAAD2 2.8.1, with a NULL pointer dereference in ifilter_bank() (libfaad/filtbank.c). Supported documents consistently describe this vulnerability across multiple feeds (NVD, CNVD, Debian DSAs, Gentoo GLSA) and indicate exposure in FAAD2; no exploit details are provided in t...

CVE-2018-19502

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.1. There was a heap-based buffer overflow in the function excludedchannels in libfaad/syntax.c...

PT-2018-3072 · Freeware Advanced Audio Coder +1 · Faad2 +1

Name of the Vulnerable Software and Affected Versions: Freeware Advanced Audio Decoder 2 FAAD2 version 2.8.8 Description: A NULL pointer dereference was discovered in the sbr process channel function of the libfaad/sbr dec.c module. This issue causes a segmentation fault and application crash,...

PT-2018-3068 · Freeware +1 · Faad2 +1

Name of the Vulnerable Software and Affected Versions: Freeware Advanced Audio Decoder 2 FAAD2 version 2.8.8 Description: The issue is related to a stack-based buffer underflow in the calculate gain function, specifically in the third instance of this function in libfaad/sbr hfadj.c. This underfl...

PT-2018-3065 · Freeware Advanced Audio Coder +1 · Faad2 +1

Name of the Vulnerable Software and Affected Versions: Freeware Advanced Audio Decoder 2 FAAD2 versions 2.8.1 and earlier Description: The issue is related to a heap-based buffer overflow in the excluded channels function of the Freeware Advanced Audio Decoder 2 FAAD2 audio decoder. This can allo...

PT-2018-3067 · Freeware +1 · Faad2 +1

Name of the Vulnerable Software and Affected Versions: Freeware Advanced Audio Decoder 2 FAAD2 version 2.8.1 Description: The issue is related to a NULL pointer dereference in the ifilter bank function. This could potentially allow an attacker to impact data integrity, gain unauthorized access to...

PT-2018-3071 · Freeware +1 · Faad2 +1

Name of the Vulnerable Software and Affected Versions: Freeware Advanced Audio Decoder 2 FAAD2 version 2.8.8 Description: A NULL pointer dereference was discovered in the ifilter bank function of libfaad/filtbank.c, which causes a segmentation fault and application crash. This leads to denial of...

PT-2018-3073 · Freeware +1 · Faad2 +1

Name of the Vulnerable Software and Affected Versions: Freeware Advanced Audio Decoder 2 FAAD2 version 2.8.8 Description: The issue is related to an invalid memory address dereference in the lt prediction function, which can cause a segmentation fault and application crash, leading to denial of...

PT-2018-3069 · Freeware +1 · Faad2 +1

Name of the Vulnerable Software and Affected Versions: Freeware Advanced Audio Decoder 2 FAAD2 version 2.8.8 Description: A NULL pointer dereference was discovered in the ic predict function of libfaad/ic predict.c, which can cause a segmentation fault and application crash, leading to denial of...

PT-2018-3066 · Freeware Advanced Audio Coder +1 · Faad2 +1

Name of the Vulnerable Software and Affected Versions: Freeware Advanced Audio Decoder 2 FAAD2 version 2.8.1 Description: The issue is related to a stack-based buffer overflow in the calculate gain function. This function is located in the libfaad/sbr hfadj.c file. The exploitation of this issue...

PT-2018-3818 · Audiocoding +2 · Faad2 +2

Name of the Vulnerable Software and Affected Versions: Freeware Advanced Audio Decoder 2 FAAD2 versions 2.8.8 Description: The issue is related to a buffer over-read in the ps mix phase function of the libfaad/ps dec.c component of the Freeware Advanced Audio Decoder 2 FAAD2 audio decoder. This i...

libaom/av1_dec_fuzzer: Index-out-of-bounds in read_uncompressed_header

Detailed report: https://oss-fuzz.com/testcase?key=5682574110752768 Project: libaom Fuzzer: libFuzzerlibaomav1decfuzzer Fuzz target binary: av1decfuzzer Job Type: libfuzzerubsanlibaom Platform Id: linux Crash Type: Index-out-of-bounds Crash Address: Crash State: readuncompressedheader...

haproxy: Out-of-bounds read in HPACK decoder

A flaw was discovered in the HPACK decoder of haproxy, before 1.8.14, that is used for HTTP/2. An out-of-bounds read access in hpackvalididx resulted in a remote crash and denial of service...

Amazon Linux 2 : tomcat (ALAS-2018-1105)

An improper handing of overflow in the UTF-8 decoder with supplementary characters can lead to an infinite loop in the decoder causing a Denial of Service.CVE-2018-1336 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon Linux 2...

openSUSE Security Update : haproxy (openSUSE-2018-1229)

This update for haproxy to version 1.8.14 fixes the following issues : These security issues were fixed : - CVE-2018-14645: A flaw was discovered in the HPACK decoder what caused an out-of-bounds read in hpackvalididx that resulted in a remote crash and denial of service bsc1108683 -...