Publishing details
Changelog
faad2 (2.9.1-1ubuntu0.1) focal-security; urgency=medium
* SECURITY UPDATE: Arbitrary Code Execution
- debian/patches/CVE-2021-32272.patch: fixed a buffer overflow in stszin
function.
- debian/patches/CVE-2021-32273.patch: fixed a buffer overflow in ftypin
function.
- debian/patches/CVE-2021-32274.patch: fixed two buffer overflows, one in
sbr_qmf_synthesis_64 function (CVE-2021-32274) and the other one in
sbr_qmf_analysis_32 function (CVE-2021-32277).
- debian/patches/CVE-2021-32278.patch: fixed a buffer overflow in
lt_prediction function.
- debian/patches/CVE-2023-38857-[1-2].patch: fixed a buffer overflow in
stcoin function.
- debian/patches/CVE-2023-38858.patch: fixed a buffer overflow in mp4info
function
- CVE-2021-32272
- CVE-2021-32273
- CVE-2021-32274
- CVE-2021-32277
- CVE-2021-32278
- CVE-2023-38857
- CVE-2023-38858
* SECURITY UPDATE: Denial of Service
- debian/patches/CVE-2021-32276.patch: fixed a null pointer dereference in
get_sample function.
- CVE-2021-32276
-- Amir Naseredini <email address hidden> Tue, 22 Aug 2023 14:07:04 +0100
Builds
Built packages
-
faad
freeware Advanced Audio Decoder player
-
faad-dbgsym
debug symbols for faad
-
libfaad-dev
freeware Advanced Audio Decoder - development files
-
libfaad2
freeware Advanced Audio Decoder - runtime files
-
libfaad2-dbgsym
debug symbols for libfaad2
Package files