Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Faad2
(Faad2_project)Repositories |
Unknown: This might be proprietary software. |
#Vulnerabilities | 9 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2021-02-26 | CVE-2021-26567 | Stack-based buffer overflow vulnerability in frontend/main.c in faad2 before 2.2.7.1 allow local attackers to execute arbitrary code via filename and pathname options. | Faad2, Diskstation_manager, Diskstation_manager_unified_controller, Skynas_firmware, Vs960hd_firmware | 7.8 | ||
2021-09-20 | CVE-2021-32272 | An issue was discovered in faad2 before 2.10.0. A heap-buffer-overflow exists in the function stszin located in mp4read.c. It allows an attacker to cause Code Execution. | Debian_linux, Faad2 | 7.8 | ||
2021-09-20 | CVE-2021-32273 | An issue was discovered in faad2 through 2.10.0. A stack-buffer-overflow exists in the function ftypin located in mp4read.c. It allows an attacker to cause Code Execution. | Debian_linux, Faad2 | 7.8 | ||
2021-09-20 | CVE-2021-32274 | An issue was discovered in faad2 through 2.10.0. A heap-buffer-overflow exists in the function sbr_qmf_synthesis_64 located in sbr_qmf.c. It allows an attacker to cause code Execution. | Debian_linux, Faad2 | 7.8 | ||
2021-09-20 | CVE-2021-32276 | An issue was discovered in faad2 through 2.10.0. A NULL pointer dereference exists in the function get_sample() located in output.c. It allows an attacker to cause Denial of Service. | Debian_linux, Faad2 | 5.5 | ||
2021-09-20 | CVE-2021-32277 | An issue was discovered in faad2 through 2.10.0. A heap-buffer-overflow exists in the function sbr_qmf_analysis_32 located in sbr_qmf.c. It allows an attacker to cause code Execution. | Debian_linux, Faad2 | 7.8 | ||
2021-09-20 | CVE-2021-32278 | An issue was discovered in faad2 through 2.10.0. A heap-buffer-overflow exists in the function lt_prediction located in lt_predict.c. It allows an attacker to cause code Execution. | Debian_linux, Faad2 | 7.8 | ||
2023-08-15 | CVE-2023-38857 | Buffer Overflow vulnerability infaad2 v.2.10.1 allows a remote attacker to execute arbitrary code and cause a denial of service via the stcoin function in mp4read.c. | Faad2 | 5.5 | ||
2023-08-15 | CVE-2023-38858 | Buffer Overflow vulnerability infaad2 v.2.10.1 allows a remote attacker to execute arbitrary code and cause a denial of service via the mp4info function in mp4read.c:1039. | Faad2 | 6.5 |