CVE-2017-9129

Опубликовано: 21 июн. 2017

Источник: debian

EPSS Низкий

Описание

The wav_open_read function in frontend/input.c in Freeware Advanced Audio Coder (FAAC) 1.28 allows remote attackers to cause a denial of service (large loop) via a crafted wav file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
faac	fixed	1.29+git20170704-1		package
faac	no-dsa		stretch	package
faac	no-dsa		jessie	package

Примечания

https://www.exploit-db.com/exploits/42207/

EPSS

Процентиль: 74%

0.00815

Низкий

Связанные уязвимости

CVE-2017-9129

CVSS3: 5.5

ubuntu

больше 8 лет назад

The wav_open_read function in frontend/input.c in Freeware Advanced Audio Coder (FAAC) 1.28 allows remote attackers to cause a denial of service (large loop) via a crafted wav file.

CVE-2017-9129

CVSS3: 5.5

nvd

больше 8 лет назад

The wav_open_read function in frontend/input.c in Freeware Advanced Audio Coder (FAAC) 1.28 allows remote attackers to cause a denial of service (large loop) via a crafted wav file.

GHSA-32wg-gc37-9jjj

CVSS3: 5.5

github

больше 3 лет назад

The wav_open_read function in frontend/input.c in Freeware Advanced Audio Coder (FAAC) 1.28 allows remote attackers to cause a denial of service (large loop) via a crafted wav file.

EPSS

Процентиль: 74%

0.00815

Низкий