CVE-2017-9222
Affected software: Freeware Advanced Audio Decoder 2 (FAAD2) version 2.7. The vulnerability is in the mp4ff_parse_tag function (common/mp4ff/mp4meta.c) and can be triggered by a crafted MP4 file. Root cause: parsing a crafted file can cause an infinite loop, leading to CPU consumption and denial ...