Information on source package faad2

Available versions

ReleaseVersion
jessie2.7-8+deb8u1
jessie (security)2.7-8+deb8u3
stretch2.8.0~cvs20161113-1+deb9u1
stretch (security)2.8.0~cvs20161113-1+deb9u2
buster2.8.8-3
bullseye2.9.1-1
sid2.9.1-1

Open issues

BugjessiestretchbusterbullseyesidDescription
CVE-2019-6956fixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2 ...
CVE-2018-20360fixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedAn invalid memory address dereference was discovered in the sbr_proces ...
CVE-2018-20199fixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedA NULL pointer dereference was discovered in ifilter_bank of libfaad/f ...
CVE-2018-20196fixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedThere is a stack-based buffer overflow in the third instance of the ca ...

Resolved issues

BugDescription
CVE-2019-15296An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2 ...
CVE-2018-20362A NULL pointer dereference was discovered in ifilter_bank of libfaad/f ...
CVE-2018-20361An invalid memory address dereference was discovered in the hf_assembl ...
CVE-2018-20359An invalid memory address dereference was discovered in the sbrDecodeS ...
CVE-2018-20358An invalid memory address dereference was discovered in the lt_predict ...
CVE-2018-20357A NULL pointer dereference was discovered in sbr_process_channel of li ...
CVE-2018-20198A NULL pointer dereference was discovered in ifilter_bank of libfaad/f ...
CVE-2018-20197There is a stack-based buffer underflow in the third instance of the c ...
CVE-2018-20195A NULL pointer dereference was discovered in ic_predict of libfaad/ic_ ...
CVE-2018-20194There is a stack-based buffer underflow in the third instance of the c ...
CVE-2018-19504An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2 ...
CVE-2018-19503An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2 ...
CVE-2018-19502An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2 ...
CVE-2017-9257The mp4ff_read_ctts function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9256The mp4ff_read_stco function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9255The mp4ff_read_stsc function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9254The mp4ff_read_stts function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9253The mp4ff_read_stsd function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9223The mp4ff_read_stts function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9222The mp4ff_parse_tag function in common/mp4ff/mp4meta.c in Freeware Adv ...
CVE-2017-9221The mp4ff_read_mdhd function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9220The mp4ff_read_stco function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9219The mp4ff_read_stsc function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9218The mp4ff_read_stsd function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2008-5244Unspecified vulnerability in xine-lib before 1.1.15 has unknown impact ...
CVE-2008-4201Heap-based buffer overflow in the decodeMP4file function (frontend/mai ...

Security announcements

DSA / DLADescription
DSA-4522-1faad2 - security update
DLA-1899-1faad2 - security update
DLA-1791-1faad2 - security update
DLA-1077-1faad2 - security update

Search for package or bug name: Reporting problems