cbcvebase.
CVE-2021-32278
published 2021-09-20

CVE-2021-32278: An issue was discovered in faad2 through 2.10.0. A heap-buffer-overflow exists in the function lt_prediction located in lt_predict.c. It allows an attacker to…

high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
An issue was discovered in faad2 through 2.10.0. A heap-buffer-overflow exists in the function lt_prediction located in lt_predict.c. It allows an attacker to cause code Execution.

Affected

12 ranges
VendorProductVersion rangeFixed in
debiandebian_linux
debiandebian_linux
debianfaad2< faad2 2.10.0-1 (bookworm)faad2 2.10.0-1 (bookworm)
faad2_projectfaad2<= 2.10.0
faad2_projectfaad2>= 0 < 2.10.0-12.10.0-1
faad2_projectfaad2>= 0 < 2.10.0-12.10.0-1
faad2_projectfaad2>= 0 < 2.10.0-12.10.0-1
faad2_projectfaad2>= 0 < 2.10.0-12.10.0-1
faad2_projectfaad2>= 0 < 2.9.1-1ubuntu0.12.9.1-1ubuntu0.1
faad2_projectfaad2>= 0 < 2.7-8+deb8u3ubuntu0.1~esm12.7-8+deb8u3ubuntu0.1~esm1
faad2_projectfaad2>= 0 < 2.8.0~cvs20150510-1ubuntu0.1+esm12.8.0~cvs20150510-1ubuntu0.1+esm1
faad2_projectfaad2>= 0 < 2.8.8-1ubuntu0.1~esm12.8.8-1ubuntu0.1~esm1

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv7.8HIGH