cbcvebase.
CVE-2021-32276
published 2021-09-20

CVE-2021-32276: An issue was discovered in faad2 through 2.10.0. A NULL pointer dereference exists in the function get_sample() located in output.c. It allows an attacker to…

medium5.5CVSS 3.1
AVLACLPRNUIRSUCNINAH
An issue was discovered in faad2 through 2.10.0. A NULL pointer dereference exists in the function get_sample() located in output.c. It allows an attacker to cause Denial of Service.

Affected

12 ranges
VendorProductVersion rangeFixed in
debiandebian_linux
debiandebian_linux
debianfaad2< faad2 2.10.0-1 (bookworm)faad2 2.10.0-1 (bookworm)
faad2_projectfaad2<= 2.10.0
faad2_projectfaad2>= 0 < 2.10.0-12.10.0-1
faad2_projectfaad2>= 0 < 2.10.0-12.10.0-1
faad2_projectfaad2>= 0 < 2.10.0-12.10.0-1
faad2_projectfaad2>= 0 < 2.10.0-12.10.0-1
faad2_projectfaad2>= 0 < 2.9.1-1ubuntu0.12.9.1-1ubuntu0.1
faad2_projectfaad2>= 0 < 2.7-8+deb8u3ubuntu0.1~esm12.7-8+deb8u3ubuntu0.1~esm1
faad2_projectfaad2>= 0 < 2.8.0~cvs20150510-1ubuntu0.1+esm12.8.0~cvs20150510-1ubuntu0.1+esm1
faad2_projectfaad2>= 0 < 2.8.8-1ubuntu0.1~esm12.8.8-1ubuntu0.1~esm1

CVSS provenance

nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
osv7.8HIGH