Total vulnerabilities in the database
Heap-based buffer overflow in the decodeMP4file function (frontend/main.c) in FAAD2 2.6.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MPEG-4 (MP4) file.
| Software | From | Fixed in |
|---|---|---|
| audiocoding / faad2 | 2.0-rc3 | 2.0-rc3.x |
| audiocoding / faad2 | 2.0-rc2 | 2.0-rc2.x |
| audiocoding / faad2 | 1.1 | 1.1.x |
| audiocoding / faad2 | 2.0-rc1 | 2.0-rc1.x |
| audiocoding / faad2 | - | 2.6.1.x |
| audiocoding / faad2 | 2.5 | 2.5.x |