Lucene search
+L

21 matches found

veracode
veracode
added 2020/05/10 11:25 p.m.21 views

Denial Of Service (DoS)

faad2 is vulnerable to denial of service DoS. The vulnerability exists as an invalid memory address dereference was discovered in the hfassembly function of libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash,...

5.5CVSS2.9AI score0.01207EPSS
Exploits1References4Affected Software1
osv
osv
added 2019/08/21 7:15 a.m.20 views

CVE-2019-15296

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The faadresetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read is determined by ld-buffersize - words4, cast to uint32. If ld-buffersize - words4 is negative, a...

7.8CVSS7AI score
Exploits0References5
cve
cve
added 2019/08/21 6:7 a.m.100 views

CVE-2019-15296

FAAD2 vulnerability CVE-2019-15296 affects Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. The faad_resetbits function in libfaad/bits.c can read a negative remaining buffer size (ld->buffer_size - words*4), leading to a buffer overflow via getdword_n, with the impact described as potential d...

7.8CVSS7.5AI score0.01316EPSS
Exploits0References5Affected Software1
osv
osv
added 2018/12/22 3:29 p.m.24 views

CVE-2018-20360

An invalid memory address dereference was discovered in the sbrprocesschannel function of libfaad/sbrdec.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...

5.5CVSS6.5AI score
Exploits0References5
prion
prion
added 2018/12/22 3:29 p.m.16 views

Design/Logic Flaw

An invalid memory address dereference was discovered in the sbrDecodeSingleFramePS function of libfaad/sbrdec.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...

4.3CVSS5.4AI score0.01165EPSS
Exploits1References4Affected Software1
osv
osv
added 2018/12/22 3:29 p.m.13 views

CVE-2018-20358

An invalid memory address dereference was discovered in the ltprediction function of libfaad/ltpredict.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...

5.5CVSS6.5AI score
Exploits0References4
debiancve
debiancve
added 2018/12/22 3:0 p.m.61 views

CVE-2018-20357

A NULL pointer dereference was discovered in sbrprocesschannel of libfaad/sbrdec.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash...

5.5CVSS6.4AI score0.01165EPSS
Exploits1
debiancve
debiancve
added 2018/12/22 3:0 p.m.42 views

CVE-2018-20359

An invalid memory address dereference was discovered in the sbrDecodeSingleFramePS function of libfaad/sbrdec.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...

5.5CVSS6.3AI score0.01165EPSS
Exploits1
nvd
nvd
added 2018/12/18 1:29 a.m.17 views

CVE-2018-20194

There is a stack-based buffer underflow in the third instance of the calculategain function in libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. A crafted input will lead to a denial of service or possibly unspecified other impact because limiting the additional noise energy...

7.8CVSS7.9AI score0.01324EPSS
Exploits1References5
osv
osv
added 2018/12/18 1:29 a.m.23 views

CVE-2018-20194

There is a stack-based buffer underflow in the third instance of the calculategain function in libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. A crafted input will lead to a denial of service or possibly unspecified other impact because limiting the additional noise energy...

7.8CVSS7.3AI score
Exploits0References5
debiancve
debiancve
added 2018/12/18 1:0 a.m.71 views

CVE-2018-20194

There is a stack-based buffer underflow in the third instance of the calculategain function in libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. A crafted input will lead to a denial of service or possibly unspecified other impact because limiting the additional noise energy...

7.8CVSS8AI score0.01324EPSS
Exploits1
debiancve
debiancve
added 2018/12/18 1:0 a.m.64 views

CVE-2018-20196

There is a stack-based buffer overflow in the third instance of the calculategain function in libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. A crafted input will lead to a denial of service or possibly unspecified other impact because the SM array is mishandled...

7.8CVSS8.1AI score0.01281EPSS
Exploits1
cve
cve
added 2018/11/23 7:0 p.m.93 views

CVE-2018-19504

CVE-2018-19504 affects FAAD2 2.8.1, with a NULL pointer dereference in ifilter_bank() (libfaad/filtbank.c). Supported documents consistently describe this vulnerability across multiple feeds (NVD, CNVD, Debian DSAs, Gentoo GLSA) and indicate exposure in FAAD2; no exploit details are provided in t...

7.8CVSS7.3AI score0.01383EPSS
Exploits1References5Affected Software1
debiancve
debiancve
added 2018/11/23 7:0 p.m.61 views

CVE-2018-19503

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.1. There was a stack-based buffer overflow in the function calculategain in libfaad/sbrhfadj.c...

7.8CVSS7.8AI score0.0145EPSS
Exploits1
ubuntucve
ubuntucve
added 2017/06/27 12:29 p.m.22 views

CVE-2017-9220

The mp4ffreadstco function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service memory allocation error via a crafted mp4 file...

5.5CVSS6.8AI score0.00891EPSS
Exploits0References2
osv
osv
added 2017/06/27 12:29 p.m.26 views

CVE-2017-9219

The mp4ffreadstsc function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service memory allocation error and application crash via a crafted mp4 file...

5.5CVSS6.6AI score
Exploits0References1
osv
osv
added 2017/06/27 12:29 p.m.12 views

CVE-2017-9253

The mp4ffreadstsd function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service large loop and CPU consumption via a crafted mp4 file...

5.5CVSS6.6AI score
Exploits0References1
cvelist
cvelist
added 2017/06/27 12:0 p.m.17 views

CVE-2017-9254

The mp4ffreadstts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service large loop and CPU consumption via a crafted mp4 file...

5.2AI score0.0096EPSS
Exploits0References1
cvelist
cvelist
added 2017/06/27 12:0 p.m.23 views

CVE-2017-9219

The mp4ffreadstsc function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service memory allocation error and application crash via a crafted mp4 file...

5.2AI score0.00891EPSS
Exploits0References1
debiancve
debiancve
added 2017/06/27 12:0 p.m.43 views

CVE-2017-9220

The mp4ffreadstco function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service memory allocation error via a crafted mp4 file...

5.5CVSS6.1AI score0.00891EPSS
Exploits0
Rows per page
Query Builder