CVE-2019-15296

HIGH

Audiocoding Freeware Advanced Audio Decoder 2 - Memory Corruption

Title source: rule

Description

An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. The faad_resetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read is determined by ld->buffer_size - words*4, cast to uint32. If ld->buffer_size - words*4 is negative, a buffer overflow is later performed via getdword_n(&ld->start[words], ld->bytes_left).

References (5)

Core 5

Core References

Patch, Third Party Advisory x_refsource_misc

https://github.com/knik0/faad2/commit/942c3e0aee748ea6fe97cb2c1aa5893225316174

View Patch ZIP pw:eip

Third Party Advisory mailing-list x_refsource_mlist

https://lists.debian.org/debian-lts-announce/2019/08/msg00033.html

Third Party Advisory vendor-advisory x_refsource_debian

https://www.debian.org/security/2019/dsa-4522

Mailing List mailing-list x_refsource_bugtraq

https://seclists.org/bugtraq/2019/Sep/28

Third Party Advisory vendor-advisory x_refsource_gentoo

https://security.gentoo.org/glsa/202006-17

Scores

CVSS v3 7.8

EPSS 0.0042

EPSS Percentile 62.1%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-119

Status published

Products (2)

audiocoding/freeware_advanced_audio_decoder_2 2.8.8

debian/debian_linux 8.0

Published Aug 21, 2019

Tracked Since Feb 18, 2026