Debian Bug report logs -
#914641
faad2: CVE-2018-19502 CVE-2018-19503 CVE-2018-19504 CVE-2019-6956
Reply or subscribe to this bug.
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, carnil@debian.org, team@security.debian.org, team@security.debian.org, Debian Multimedia Maintainers <pkg-multimedia-maintainers@lists.alioth.debian.org>:
Bug#914641; Package src:faad2.
(Sun, 25 Nov 2018 20:51:04 GMT) (full text, mbox, link).
Acknowledgement sent
to Salvatore Bonaccorso <carnil@debian.org>:
New Bug report received and forwarded. Copy sent to carnil@debian.org, team@security.debian.org, team@security.debian.org, Debian Multimedia Maintainers <pkg-multimedia-maintainers@lists.alioth.debian.org>.
(Sun, 25 Nov 2018 20:51:04 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Source: faad2
Version: 2.8.8-1
Severity: important
Tags: security upstream
Forwarded: https://sourceforge.net/p/faac/bugs/240/
Hi,
The following vulnerabilities were published for faad2.
CVE-2018-19502[0]:
| An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2)
| 2.8.1. There was a heap-based buffer overflow in the function
| excluded_channels() in libfaad/syntax.c.
CVE-2018-19503[1]:
| An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2)
| 2.8.1. There was a stack-based buffer overflow in the function
| calculate_gain() in libfaad/sbr_hfadj.c.
CVE-2018-19504[2]:
| An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2)
| 2.8.1. There is a NULL pointer dereference in ifilter_bank() in
| libfaad/filtbank.c.
If you fix the vulnerabilities please also make sure to include the
CVE (Common Vulnerabilities & Exposures) ids in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2018-19502
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19502
[1] https://security-tracker.debian.org/tracker/CVE-2018-19503
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19503
[2] https://security-tracker.debian.org/tracker/CVE-2018-19504
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19504
Please adjust the affected versions in the BTS as needed.
Regards,
Salvatore
Information forwarded
to debian-bugs-dist@lists.debian.org, Debian Multimedia Maintainers <pkg-multimedia-maintainers@lists.alioth.debian.org>:
Bug#914641; Package src:faad2.
(Sat, 26 Jan 2019 10:03:03 GMT) (full text, mbox, link).
Acknowledgement sent
to Salvatore Bonaccorso <carnil@debian.org>:
Extra info received and forwarded to list. Copy sent to Debian Multimedia Maintainers <pkg-multimedia-maintainers@lists.alioth.debian.org>.
(Sat, 26 Jan 2019 10:03:03 GMT) (full text, mbox, link).
Message #10 received at 914641@bugs.debian.org (full text, mbox, reply):
Control: retitle -1 faad2: CVE-2018-19502 CVE-2018-19503 CVE-2018-19504 CVE-2019-6956
On Sun, Nov 25, 2018 at 09:47:22PM +0100, Salvatore Bonaccorso wrote:
> Source: faad2
> Version: 2.8.8-1
> Severity: important
> Tags: security upstream
> Forwarded: https://sourceforge.net/p/faac/bugs/240/
>
> Hi,
>
> The following vulnerabilities were published for faad2.
>
> CVE-2018-19502[0]:
> | An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2)
> | 2.8.1. There was a heap-based buffer overflow in the function
> | excluded_channels() in libfaad/syntax.c.
>
> CVE-2018-19503[1]:
> | An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2)
> | 2.8.1. There was a stack-based buffer overflow in the function
> | calculate_gain() in libfaad/sbr_hfadj.c.
>
> CVE-2018-19504[2]:
> | An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2)
> | 2.8.1. There is a NULL pointer dereference in ifilter_bank() in
> | libfaad/filtbank.c.
One more issue was reported (unfortunately in the same upstream bug,
so add it to the list here as well) in
https://sourceforge.net/p/faac/bugs/240/ which later on was assigned
CVE-2019-6956.
CVE-2109-6956 relates to the issue in
https://github.com/TeamSeri0us/pocs/blob/master/faad/global-buffer-overflow%40ps_mix_phase.md
Regards,
Salvatore
Changed Bug title to 'faad2: CVE-2018-19502 CVE-2018-19503 CVE-2018-19504 CVE-2019-6956' from 'faad2: CVE-2018-19502 CVE-2018-19503 CVE-2018-19504'.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to 914641-submit@bugs.debian.org.
(Sat, 26 Jan 2019 10:03:03 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Wed Jun 19 15:22:59 2019;
Machine Name:
beach
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.
Vulmon