Freeware Advanced Audio Decoder 2@* Security Vulnerabilities and Issues — Freeware Advanced Audio Decoder 2@* CVE List

AudiocodingFreeware Advanced Audio Decoder 2*

3 matches found

CVE•added 2018/12/22 3:0 p.m.•118 views

CVE-2018-20360

FAAD2 (libfaad) vulnerability CVE-2018-20360 arises from an invalid memory address dereference in sbr_process_channel (libfaad/sbr_dec.c), on FAAD2 2.8.8, causing segmentation fault and denial of service. Connected advisories confirm this issue among multiple FAAD2 CVEs and document patches acros...

5.5CVSS5.9AI score0.00479EPSS

CVE•added 2018/12/18 1:0 a.m.•115 views

CVE-2018-20199

CVE-2018-20199 affects FAAD2 2.8.8 (libfaad/filtbank.c) with a NULL pointer dereference in ifilter_bank, causing segmentation fault and DoS due to mishandling in ONLY_LONG_SEQUENCE. Multiple advisories (Debian DSA-5109/DSA-1899, Debian DLA-2792, Gentoo GLSA-202006-17) document this and urge upgra...

5.5CVSS5.8AI score0.00295EPSS

CVE•added 2019/01/25 4:0 p.m.•101 views

CVE-2019-6956

FAAD2 2.8.8 contains CVE-2019-6956: a buffer over-read in ps_mix_phase (libfaad/ps_dec.c). Public advisories (Debian, Gentoo GLSA) link this to potential denial of service and related impacts; Debian notes several FAAD2 CVEs in older releases. The issues are fixed in later FAAD2 releases (Gentoo ...

7.1CVSS7AI score0.00339EPSS