Linux Distros Unpatched Vulnerability : CVE-2018-20194

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a stack-based buffer underflow in the third instance of the calculategain function in libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2...

Linux Distros Unpatched Vulnerability : CVE-2018-20359

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An invalid memory address dereference was discovered in the sbrDecodeSingleFramePS function of libfaad/sbrdec.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8...

SUSE CVE-2018-20194

There is a stack-based buffer underflow in the third instance of the calculategain function in libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. A crafted input will lead to a denial of service or possibly unspecified other impact because limiting the additional noise energy...

SUSE CVE-2018-20358

An invalid memory address dereference was discovered in the ltprediction function of libfaad/ltpredict.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...

SUSE CVE-2019-6956

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. It is a buffer over-read in psmixphase in libfaad/psdec.c...

The vulnerability of the sbr_process_channel function in the libfaad/sbr_dec.c component of the Freeware Advanced Audio Decoder 2 (FAAD2) allows a intruder to trigger a service failure.

The vulnerability of the sbrprocesschannel function in the libfaad/sbrdec.c component of the Freeware Advanced Audio Decoder 2 FAAD2 audio decoder is related to improper processing of new PS channels. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

The vulnerability of the ifilter_bank function in the libfaad/filtbank.c component allows a hacker to trigger a service failure. This vulnerability is present in the Freeware Advanced Audio Decoder 2 (FAAD2) audio decoder.

The vulnerability of the ifilterbank function in the libfaad/filtbank.c component is related to pointer arithmetic errors. Exploiting this vulnerability allows an attacker to cause a service failure...

The vulnerability of the sbr_qmf_synthesis_64 function in the sbr_qmf.c component of the Freeware Advanced Audio Decoder 2 (FAAD2) allows a hacker to gain access to confidential data, compromise its integrity, and cause service failure.

The vulnerability of the sbrqmfsynthesis64 function in the sbrqmf.c component of the Freeware Advanced Audio Decoder 2 FAAD2 audio decoder is related to buffer-overflow situations. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and...

Faad2 缓冲区错误漏洞

Freeware Advanced Audio Decoder 2 FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder licensed under the GPLv2 license. ltprediction function in ltpredict.c in FAAD2 2.10.0 and earlier versions is vulnerable to a heap buffer overflow vulnerability. An attacker could exploit this vulnerability t...

The vulnerability of the mp4ff_read_stsd function in software for working with audio files, specifically in the Freeware Advanced Audio Decoder 2 (FAAD2) software, allows a hacker to trigger a service denial.

The vulnerability of the mp4ffreadstsd function in software for working with audio files, such as Freeware Advanced Audio Decoder 2 FAAD2, is related to the execution of a loop with an unavailable exit condition. Exploiting this vulnerability can allow an attacker to cause service interruptions b...

The vulnerability of the mp4ff_read_stco function in software for working with audio files, found in the Freeware Advanced Audio Decoder 2 (FAAD2) software, allows a hacker to trigger a service denial.

The vulnerability of the mp4ffreadstco function in software for working with audio files, found in the Freeware Advanced Audio Decoder 2 FAAD2, relates to the execution of a loop without sufficient restrictions on its execution count. Exploiting this vulnerability could allow an attacker to cause...

The vulnerability of the mp4ff_read_stsd function (common/mp4ff/mp4atom.c) in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a hacker to trigger a service denial.

The vulnerability of the mp4ffreadstsd function common/mp4ff/mp4atom.c in the Freeware Advanced Audio Decoder 2 FAAD2 audio decoder is caused by reading beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure using a specially created...

The vulnerability of the mp4ff_read_stco function (common/mp4ff/mp4atom.c) in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a hacker to trigger a service denial.

The vulnerability of the mp4ffreadstco function common/mp4ff/mp4atom.c in the Freeware Advanced Audio Decoder 2 FAAD2 audio decoder is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a service failure using a...

The vulnerability of the calculate_gain function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failure.

The vulnerability of the calculategain function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to an error that causes stack overflow. Exploiting this vulnerability could allow a remote attacker to compromise data integrity, gain unauthorized access to protected information, and cause...

The vulnerability of the ifilter_bank() function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a intruder to compromise data integrity, gain unauthorized access to protected information, and cause service interruptions.

The vulnerability of the ifilterbank function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to an error that causes a NULL pointer dereferencing. Exploiting this vulnerability could allow an attacker to compromise data integrity, gain unauthorized access to protected information, and...

The vulnerability of the faad_resetbits() function in the software suite for working with audio files, Freeware Advanced Audio Decoder 2 (FAAD2), allows a perpetrator to compromise data integrity, gain unauthorized access to protected information, and cause service failures.

The vulnerability of the faadresetbits function in the software suite for working with audio files, Freeware Advanced Audio Decoder 2 FAAD2, is related to buffer overflows. Exploiting this vulnerability can allow an attacker to compromise data integrity, gain unauthorized access to protected...

The vulnerability of the lt_prediction function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a intruder to trigger a service failure.

The vulnerability of the ltprediction function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to a pointer arithmetic error, which leads to a memory access that goes beyond the boundaries of the memory buffer. Exploiting this vulnerability can allow an attacker to cause a service failu...

The vulnerability of the mp4ff_read_stts function in the software for working with audio files, known as Freeware Advanced Audio Decoder 2 (FAAD2), allows a hacker to trigger a service denial.

The vulnerability of the mp4ffreadstts function in the software suite for working with audio files, Freeware Advanced Audio Decoder 2 FAAD2, is related to improper processing of mp4 files. This can lead to excessive resource consumption by the processor. Exploiting this vulnerability could allow ...

CVE-2019-6956

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. It is a buffer over-read in psmixphase in libfaad/psdec.c...

Denial of Service Vulnerability in Freeware Advanced Audio Deoder 2 (CNVD-2019-01362)

Freeware Advanced Audio Decoder 2 is advanced audio encoder. A denial of service vulnerability exists in Freeware Advanced Audio Decoder 2 FAAD2 in version v2.8.8, which can be exploited to cause a denial of service with the help of a specially crafted acc file...