Freeware Advanced Audio Decoder mp4ff_read_ctts Denial of Service Vulnerability

Freeware Advanced Audio Decoder is advanced audio encoder. Freeware Advanced Audio Decoder 2 FAAD2 version 2.7, a security vulnerability exists in the common/mp4ff/mp4atom.c/mp4ffreadctts function, which can be exploited by remote attackers to cause a denial of service vulnerability via a...

DEBIAN-CVE-2017-9257

The mp4ffreadctts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service large loop and CPU consumption via a crafted mp4 file...

CVE-2017-9257

The mp4ffreadctts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service large loop and CPU consumption via a crafted mp4 file...

CVE-2017-9257

Summary (CVE-2017-9257): The vulnerability affects FAAD2 2.7, where the function mp4ff_read_ctts in common/mp4ff/mp4atom.c can be abused by a crafted MP4 file to trigger a denial of service through a large loop/CPU consumption. The issue is documented across multiple feeds; Debian’s DLA-1077-1 no...

CVE-2017-9257

The mp4ffreadctts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service large loop and CPU consumption via a crafted mp4 file...