Lucene search
K

21 matches found

Veracode
Veracode
added 2020/05/10 11:25 p.m.21 views

Denial Of Service (DoS)

faad2 is vulnerable to denial of service DoS. The vulnerability exists as an invalid memory address dereference was discovered in the hfassembly function of libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash,...

5.5CVSS2.9AI score0.01207EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2019/08/21 7:15 a.m.20 views

CVE-2019-15296

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The faadresetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read is determined by ld-buffersize - words4, cast to uint32. If ld-buffersize - words4 is negative, a...

7.8CVSS7AI score
Exploits0References5
CVE
CVE
added 2019/08/21 6:7 a.m.98 views

CVE-2019-15296

FAAD2 vulnerability CVE-2019-15296 affects Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. The faad_resetbits function in libfaad/bits.c can read a negative remaining buffer size (ld->buffer_size - words*4), leading to a buffer overflow via getdword_n, with the impact described as potential d...

7.8CVSS7.5AI score0.01316EPSS
Exploits0References5Affected Software1
Prion
Prion
added 2018/12/22 3:29 p.m.16 views

Design/Logic Flaw

An invalid memory address dereference was discovered in the sbrDecodeSingleFramePS function of libfaad/sbrdec.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...

4.3CVSS5.4AI score0.01165EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2018/12/22 3:29 p.m.12 views

CVE-2018-20358

An invalid memory address dereference was discovered in the ltprediction function of libfaad/ltpredict.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...

5.5CVSS6.5AI score
Exploits0References4
OSV
OSV
added 2018/12/22 3:29 p.m.24 views

CVE-2018-20360

An invalid memory address dereference was discovered in the sbrprocesschannel function of libfaad/sbrdec.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...

5.5CVSS6.5AI score
Exploits0References5
Debian CVE
Debian CVE
added 2018/12/22 3:0 p.m.42 views

CVE-2018-20359

An invalid memory address dereference was discovered in the sbrDecodeSingleFramePS function of libfaad/sbrdec.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...

5.5CVSS6.3AI score0.01165EPSS
Exploits1
Debian CVE
Debian CVE
added 2018/12/22 3:0 p.m.60 views

CVE-2018-20357

A NULL pointer dereference was discovered in sbrprocesschannel of libfaad/sbrdec.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash...

5.5CVSS6.4AI score0.01165EPSS
Exploits1
NVD
NVD
added 2018/12/18 1:29 a.m.17 views

CVE-2018-20194

There is a stack-based buffer underflow in the third instance of the calculategain function in libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. A crafted input will lead to a denial of service or possibly unspecified other impact because limiting the additional noise energy...

7.8CVSS7.9AI score0.01324EPSS
Exploits1References5
OSV
OSV
added 2018/12/18 1:29 a.m.23 views

CVE-2018-20194

There is a stack-based buffer underflow in the third instance of the calculategain function in libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. A crafted input will lead to a denial of service or possibly unspecified other impact because limiting the additional noise energy...

7.8CVSS7.3AI score
Exploits0References5
Debian CVE
Debian CVE
added 2018/12/18 1:0 a.m.64 views

CVE-2018-20196

There is a stack-based buffer overflow in the third instance of the calculategain function in libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. A crafted input will lead to a denial of service or possibly unspecified other impact because the SM array is mishandled...

7.8CVSS8.1AI score0.01281EPSS
Exploits1
Debian CVE
Debian CVE
added 2018/12/18 1:0 a.m.70 views

CVE-2018-20194

There is a stack-based buffer underflow in the third instance of the calculategain function in libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. A crafted input will lead to a denial of service or possibly unspecified other impact because limiting the additional noise energy...

7.8CVSS8AI score0.01324EPSS
Exploits1
CVE
CVE
added 2018/11/23 7:0 p.m.91 views

CVE-2018-19504

CVE-2018-19504 affects FAAD2 2.8.1, with a NULL pointer dereference in ifilter_bank() (libfaad/filtbank.c). Supported documents consistently describe this vulnerability across multiple feeds (NVD, CNVD, Debian DSAs, Gentoo GLSA) and indicate exposure in FAAD2; no exploit details are provided in t...

7.8CVSS7.3AI score0.01383EPSS
Exploits1References5Affected Software1
Debian CVE
Debian CVE
added 2018/11/23 7:0 p.m.61 views

CVE-2018-19503

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.1. There was a stack-based buffer overflow in the function calculategain in libfaad/sbrhfadj.c...

7.8CVSS7.8AI score0.0145EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2017/06/27 12:29 p.m.22 views

CVE-2017-9220

The mp4ffreadstco function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service memory allocation error via a crafted mp4 file...

5.5CVSS6.8AI score0.00891EPSS
Exploits0References2
OSV
OSV
added 2017/06/27 12:29 p.m.12 views

CVE-2017-9253

The mp4ffreadstsd function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service large loop and CPU consumption via a crafted mp4 file...

5.5CVSS6.6AI score
Exploits0References1
OSV
OSV
added 2017/06/27 12:29 p.m.25 views

CVE-2017-9219

The mp4ffreadstsc function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service memory allocation error and application crash via a crafted mp4 file...

5.5CVSS6.6AI score
Exploits0References1
Cvelist
Cvelist
added 2017/06/27 12:0 p.m.23 views

CVE-2017-9219

The mp4ffreadstsc function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service memory allocation error and application crash via a crafted mp4 file...

5.2AI score0.00891EPSS
Exploits0References1
CVE
CVE
added 2017/06/27 12:0 p.m.64 views

CVE-2017-9218

CVE-2017-9218 affects Freeware Advanced Audio Decoder 2 (FAAD2) 2.7. The vulnerable component is mp4ff_read_stsd in common/mp4ff/mp4atom.c, where crafted MP4 files can trigger an invalid memory read leading to an application crash (denial of service). Connected sources corroborate the same descri...

5.5CVSS5.2AI score0.00891EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2017/06/27 12:0 p.m.17 views

CVE-2017-9254

The mp4ffreadstts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service large loop and CPU consumption via a crafted mp4 file...

5.2AI score0.0096EPSS
Exploits0References1
Rows per page
Query Builder