Information on source package faad2

Available versions

ReleaseVersion
jessie2.7-8+deb8u1
jessie (security)2.7-8+deb8u2
stretch2.8.0~cvs20161113-1+deb9u1
buster2.8.8-3
bullseye2.8.8-3
sid2.8.8-3

Open issues

BugjessiestretchbusterbullseyesidDescription
TEMP-0000000-E3D3DDvulnerablevulnerablefixedfixedfixedfaad2 issue fixed in vlc
CVE-2019-6956vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableAn issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2 ...
CVE-2018-20362fixedvulnerable (no DSA)fixedfixedfixedA NULL pointer dereference was discovered in ifilter_bank of libfaad/f ...
CVE-2018-20361fixedvulnerable (no DSA)fixedfixedfixedAn invalid memory address dereference was discovered in the hf_assembl ...
CVE-2018-20360vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableAn invalid memory address dereference was discovered in the sbr_proces ...
CVE-2018-20359vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableAn invalid memory address dereference was discovered in the sbrDecodeS ...
CVE-2018-20358fixedvulnerable (no DSA)fixedfixedfixedAn invalid memory address dereference was discovered in the lt_predict ...
CVE-2018-20357vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableA NULL pointer dereference was discovered in sbr_process_channel of li ...
CVE-2018-20199vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableA NULL pointer dereference was discovered in ifilter_bank of libfaad/f ...
CVE-2018-20198fixedvulnerable (no DSA)fixedfixedfixedA NULL pointer dereference was discovered in ifilter_bank of libfaad/f ...
CVE-2018-20197fixedvulnerablefixedfixedfixedThere is a stack-based buffer underflow in the third instance of the c ...
CVE-2018-20196vulnerablevulnerablevulnerablevulnerablevulnerableThere is a stack-based buffer overflow in the third instance of the ca ...
CVE-2018-20195vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableA NULL pointer dereference was discovered in ic_predict of libfaad/ic_ ...
CVE-2018-20194fixedvulnerablefixedfixedfixedThere is a stack-based buffer underflow in the third instance of the c ...
CVE-2018-19504vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableAn issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2 ...
CVE-2018-19503vulnerablevulnerablevulnerablevulnerablevulnerableAn issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2 ...
CVE-2018-19502vulnerablevulnerablevulnerablevulnerablevulnerableAn issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2 ...

Resolved issues

BugDescription
CVE-2017-9257The mp4ff_read_ctts function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9256The mp4ff_read_stco function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9255The mp4ff_read_stsc function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9254The mp4ff_read_stts function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9253The mp4ff_read_stsd function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9223The mp4ff_read_stts function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9222The mp4ff_parse_tag function in common/mp4ff/mp4meta.c in Freeware Adv ...
CVE-2017-9221The mp4ff_read_mdhd function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9220The mp4ff_read_stco function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9219The mp4ff_read_stsc function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2017-9218The mp4ff_read_stsd function in common/mp4ff/mp4atom.c in Freeware Adv ...
CVE-2008-5244Unspecified vulnerability in xine-lib before 1.1.15 has unknown impact ...
CVE-2008-4201Heap-based buffer overflow in the decodeMP4file function (frontend/mai ...

Security announcements

DSA / DLADescription
DLA-1791-1faad2 - security update
DLA-1077-1faad2 - security update

Search for package or bug name: Reporting problems