An invalid memory address dereference was discovered in the huffcode function (libfaac/huff2.c) in Freeware Advanced Audio Coder (FAAC) 1.29.9.2. The vulnerability causes a segmentation fault and application crash, which leads to denial of service in the book 10 case.
References
Link | Resource |
---|---|
https://github.com/knik0/faac/issues/24 | Exploit Third Party Advisory |
Configurations
Information
Published : 2018-12-05 16:29
Updated : 2018-12-28 05:44
NVD link : CVE-2018-19891
Mitre link : CVE-2018-19891
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
audiocoding
- freeware_advanced_audio_coder