CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 1CVE-2021-32274
https://notcve.org/view.php?id=CVE-2021-32274
An issue was discovered in faad2 through 2.10.0. A heap-buffer-overflow exists in the function sbr_qmf_synthesis_64 located in sbr_qmf.c. It allows an attacker to cause code Execution. Se ha detectado un problema en faad2 versiones hasta 2.10.0. Se presenta un desbordamiento del búfer de la pila en la función sbr_qmf_synthesis_64 ubicada en el archivo sbr_qmf.c. • https://github.com/knik0/faad2/issues/60 https://lists.debian.org/debian-lts-announce/2021/10/msg00020.html https://www.debian.org/security/2022/dsa-5109 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 1CVE-2021-32276
https://notcve.org/view.php?id=CVE-2021-32276
An issue was discovered in faad2 through 2.10.0. A NULL pointer dereference exists in the function get_sample() located in output.c. It allows an attacker to cause Denial of Service. Se ha detectado un problema en faad2 versiones hasta 2.10.0. Se presenta una desreferencia del puntero NULL en la función get_sample() ubicada en el archivo output.c. • https://github.com/knik0/faad2/issues/58 https://lists.debian.org/debian-lts-announce/2021/10/msg00020.html https://www.debian.org/security/2022/dsa-5109 • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 1CVE-2021-32277
https://notcve.org/view.php?id=CVE-2021-32277
An issue was discovered in faad2 through 2.10.0. A heap-buffer-overflow exists in the function sbr_qmf_analysis_32 located in sbr_qmf.c. It allows an attacker to cause code Execution. Se ha detectado un problema en faad2 versiones hasta 2.10.0. Se presenta un desbordamiento del búfer de la pila en la función sbr_qmf_analysis_32 ubicada en el archivo sbr_qmf.c. • https://github.com/knik0/faad2/issues/59 https://lists.debian.org/debian-lts-announce/2021/10/msg00020.html https://www.debian.org/security/2022/dsa-5109 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 1CVE-2021-32278
https://notcve.org/view.php?id=CVE-2021-32278
An issue was discovered in faad2 through 2.10.0. A heap-buffer-overflow exists in the function lt_prediction located in lt_predict.c. It allows an attacker to cause code Execution. Se ha detectado un problema en faad2 versiones hasta 2.10.0. Se presenta un desbordamiento del búfer de la pila en la función lt_prediction ubicada en el archivo lt_predict.c. • https://github.com/knik0/faad2/issues/62 https://lists.debian.org/debian-lts-announce/2021/10/msg00020.html https://www.debian.org/security/2022/dsa-5109 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 1CVE-2020-21913
https://notcve.org/view.php?id=CVE-2020-21913
International Components for Unicode (ICU-20850) v66.1 was discovered to contain a use after free bug in the pkg_createWithAssemblyCode function in the file tools/pkgdata/pkgdata.cpp. Se ha detectado que International Components for Unicode (ICU-20850) versión v66.1, contiene un bug de uso de memoria previamente liberada en la función pkg_createWithAssemblyCode en el archivo tools/pkgdata/pkgdata.cpp • https://github.com/unicode-org/icu/pull/886 https://lists.debian.org/debian-lts-announce/2021/10/msg00008.html https://unicode-org.atlassian.net/browse/ICU-20850 https://www.debian.org/security/2021/dsa-5014 • CWE-416: Use After Free •