Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Libaacplus Project Subscribe
Filtered by product Libaacplus
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-7603 1 Libaacplus Project 1 Libaacplus 2022-12-09 6.8 MEDIUM 7.8 HIGH
au_channel.h in HE-AAC+ Codec (aka libaacplus) 2.0.2 has a signed integer overflow, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted audio file.
CVE-2017-7604 1 Libaacplus Project 1 Libaacplus 2022-12-09 6.8 MEDIUM 7.8 HIGH
au_channel.h in HE-AAC+ Codec (aka libaacplus) 2.0.2 has a left-shift undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted audio file.
CVE-2017-7605 1 Libaacplus Project 1 Libaacplus 2022-12-07 6.8 MEDIUM 7.8 HIGH
aacplusenc.c in HE-AAC+ Codec (aka libaacplus) 2.0.2 has an assertion failure, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted audio file.