Information on source package faad2

Available versions

ReleaseVersion
jessie2.7-8+deb8u1
stretch2.8.0~cvs20161113-1+deb9u1
buster2.8.8-2
sid2.8.8-2

Open issues

BugjessiestretchbustersidDescription
CVE-2019-6956vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerableAn issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2 ...
CVE-2018-20362vulnerablevulnerable (no DSA)fixedfixedA NULL pointer dereference was discovered in ifilter_bank of libfaad/f ...
CVE-2018-20361vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerableAn invalid memory address dereference was discovered in the hf_assembl ...
CVE-2018-20360vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerableAn invalid memory address dereference was discovered in the sbr_proces ...
CVE-2018-20359vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerableAn invalid memory address dereference was discovered in the sbrDecodeS ...
CVE-2018-20358vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerableAn invalid memory address dereference was discovered in the lt_predict ...
CVE-2018-20357vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerableA NULL pointer dereference was discovered in sbr_process_channel of li ...
CVE-2018-20199vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerableA NULL pointer dereference was discovered in ifilter_bank of libfaad/f ...
CVE-2018-20198vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerableA NULL pointer dereference was discovered in ifilter_bank of libfaad/f ...
CVE-2018-20197vulnerablevulnerablevulnerablevulnerableThere is a stack-based buffer underflow in the third instance of the c ...
CVE-2018-20196vulnerablevulnerablevulnerablevulnerableThere is a stack-based buffer overflow in the third instance of the ca ...
CVE-2018-20195vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerableA NULL pointer dereference was discovered in ic_predict of libfaad/ic_ ...
CVE-2018-20194vulnerablevulnerablefixedfixedThere is a stack-based buffer underflow in the third instance of the c ...
CVE-2018-19504vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerablevulnerableAn issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2 ...
CVE-2018-19503vulnerablevulnerablevulnerablevulnerableAn issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2 ...
CVE-2018-19502vulnerablevulnerablevulnerablevulnerableAn issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2 ...

Resolved issues

BugDescription
CVE-2017-9257The mp4ff_read_ctts function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9256The mp4ff_read_stco function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9255The mp4ff_read_stsc function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9254The mp4ff_read_stts function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9253The mp4ff_read_stsd function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9223The mp4ff_read_stts function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9222The mp4ff_parse_tag function in common/mp4ff/mp4meta.c in Freeware Adv ...
CVE-2017-9221The mp4ff_read_mdhd function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9220The mp4ff_read_stco function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9219The mp4ff_read_stsc function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9218The mp4ff_read_stsd function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2008-5244Unspecified vulnerability in xine-lib before 1.1.15 has unknown impact ...
CVE-2008-4201Heap-based buffer overflow in the decodeMP4file function (frontend/mai ...

Security announcements

DSA / DLADescription
DLA-1077-1faad2 - security update

Search for package or bug name: Reporting problems