14 matches found
Design/Logic Flaw
The mp4ffreadstsd function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted mp4 file...
CVE-2017-9222
The mp4ffparsetag function in common/mp4ff/mp4meta.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service infinite loop and CPU consumption via a crafted mp4 file...
CVE-2017-9254
The mp4ffreadstts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service large loop and CPU consumption via a crafted mp4 file...
CVE-2017-9256
The mp4ffreadstco function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service large loop and CPU consumption via a crafted mp4 file...
CVE-2017-9218
The mp4ffreadstsd function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted mp4 file...
CVE-2017-9255
The mp4ffreadstsc function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service large loop and CPU consumption via a crafted mp4 file...
CVE-2017-9257
The mp4ffreadctts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service large loop and CPU consumption via a crafted mp4 file...
CVE-2017-9255
The mp4ffreadstsc function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service large loop and CPU consumption via a crafted mp4 file...
CVE-2017-9220
The mp4ffreadstco function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service memory allocation error via a crafted mp4 file...
DEBIAN-CVE-2017-9254
The mp4ffreadstts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service large loop and CPU consumption via a crafted mp4 file...
CVE-2017-9253
CVE-2017-9253 affects Freeware Advanced Audio Decoder 2 (FAAD2) 2.7. The vulnerability is in the mp4ff_read_stsd function (common/mp4ff/mp4atom.c) and can be exploited remotely to cause a denial of service via a crafted MP4 file (large loop/CPU consumption). Debian and OSV entries corroborate the...
CVE-2017-9218
CVE-2017-9218 affects Freeware Advanced Audio Decoder 2 (FAAD2) 2.7. The vulnerable component is mp4ff_read_stsd in common/mp4ff/mp4atom.c, where crafted MP4 files can trigger an invalid memory read leading to an application crash (denial of service). Connected sources corroborate the same descri...
CVE-2017-9222
Affected software: Freeware Advanced Audio Decoder 2 (FAAD2) version 2.7. The vulnerability is in the mp4ff_parse_tag function (common/mp4ff/mp4meta.c) and can be triggered by a crafted MP4 file. Root cause: parsing a crafted file can cause an infinite loop, leading to CPU consumption and denial ...
CVE-2017-9254
The mp4ffreadstts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service large loop and CPU consumption via a crafted mp4 file...