Vulnerabilities > Audiocoding > Freeware Advanced Audio Decoder 2 > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-12-22 CVE-2018-20362 NULL Pointer Dereference vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.8.8
A NULL pointer dereference was discovered in ifilter_bank of libfaad/filtbank.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8.
local
low complexity
audiocoding CWE-476
5.5
5.5
2018-12-22 CVE-2018-20361 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.8.8
An invalid memory address dereference was discovered in the hf_assembly function of libfaad/sbr_hfadj.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8.
local
low complexity
audiocoding CWE-119
5.5
5.5
2018-12-22 CVE-2018-20360 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An invalid memory address dereference was discovered in the sbr_process_channel function of libfaad/sbr_dec.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8.
local
low complexity
audiocoding debian CWE-119
5.5
5.5
2018-12-22 CVE-2018-20359 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.8.8
An invalid memory address dereference was discovered in the sbrDecodeSingleFramePS function of libfaad/sbr_dec.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8.
local
low complexity
audiocoding CWE-119
5.5
5.5
2018-12-22 CVE-2018-20358 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.8.8
An invalid memory address dereference was discovered in the lt_prediction function of libfaad/lt_predict.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8.
local
low complexity
audiocoding CWE-119
5.5
5.5
2018-12-22 CVE-2018-20357 NULL Pointer Dereference vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.8.8
A NULL pointer dereference was discovered in sbr_process_channel of libfaad/sbr_dec.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8.
local
low complexity
audiocoding CWE-476
5.5
5.5
2018-12-18 CVE-2018-20199 NULL Pointer Dereference vulnerability in multiple products
A NULL pointer dereference was discovered in ifilter_bank of libfaad/filtbank.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8.
local
low complexity
audiocoding debian CWE-476
5.5
5.5
2018-12-18 CVE-2018-20198 NULL Pointer Dereference vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.8.8
A NULL pointer dereference was discovered in ifilter_bank of libfaad/filtbank.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8.
local
low complexity
audiocoding CWE-476
5.5
5.5
2018-12-18 CVE-2018-20195 NULL Pointer Dereference vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.8.8
A NULL pointer dereference was discovered in ic_predict of libfaad/ic_predict.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8.
local
low complexity
audiocoding CWE-476
5.5
5.5
2017-06-27 CVE-2017-9257 Excessive Iteration vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.7
The mp4ff_read_ctts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted mp4 file.
local
low complexity
audiocoding CWE-834
5.5
5.5