Vulnerabilities > Audiocoding > Freeware Advanced Audio Decoder 2 > 2.7
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-01-25 | CVE-2019-6956 | Out-of-bounds Read vulnerability in multiple products An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. | 5.8 |
| 2018-12-22 | CVE-2018-20360 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products An invalid memory address dereference was discovered in the sbr_process_channel function of libfaad/sbr_dec.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. | 4.3 |
| 2018-12-18 | CVE-2018-20199 | NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference was discovered in ifilter_bank of libfaad/filtbank.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. | 4.3 |
| 2017-06-27 | CVE-2017-9257 | Excessive Iteration vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.7 The mp4ff_read_ctts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted mp4 file. | 7.1 |
| 2017-06-27 | CVE-2017-9256 | Excessive Iteration vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.7 The mp4ff_read_stco function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted mp4 file. | 7.1 |
| 2017-06-27 | CVE-2017-9255 | Excessive Iteration vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.7 The mp4ff_read_stsc function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted mp4 file. | 7.1 |
| 2017-06-27 | CVE-2017-9254 | Excessive Iteration vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.7 The mp4ff_read_stts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted mp4 file. | 7.1 |
| 2017-06-27 | CVE-2017-9253 | Excessive Iteration vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.7 The mp4ff_read_stsd function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted mp4 file. | 7.1 |
| 2017-06-27 | CVE-2017-9223 | Out-of-bounds Read vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.7 The mp4ff_read_stts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of service (invalid memory read and application crash) via a crafted mp4 file. | 4.3 |
| 2017-06-27 | CVE-2017-9222 | Infinite Loop vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.7 The mp4ff_parse_tag function in common/mp4ff/mp4meta.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted mp4 file. | 7.1 |