CVE-2017-7605

CVE-2017-7605 affects HE-AAC+ Codec (libaacplus) 2.0.2, with an assertion failure in aacplusenc.c that could allow a crafted audio file to cause a denial of service (application crash). Connected sources confirm the same issue and note related 7603/7604 variants exist in the same library. No publ...

CVE-2017-7603

CVE-2017-7603 concerns the HE-AAC+ Codec (libaacplus) 2.0.2, where a signed integer overflow in au_channel.h may allow remote attackers to cause a denial of service (application crash) or potentially other impact via a crafted audio file. The connected sources corroborate the component, version, ...

CVE-2017-7604

CVE-2017-7604 affects HE-AAC+ Codec (libaacplus) 2.0.2; the au_channel.h left-shift undefined behavior could allow remote attackers to cause a denial of service (application crash) via a crafted audio file. Connected sources confirm the vulnerable component/file and the potential impact; exploita...