Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2021-32276

Опубликовано: 20 сент. 2021
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.3
CVSS3: 5.5

Описание

An issue was discovered in faad2 through 2.10.0. A NULL pointer dereference exists in the function get_sample() located in output.c. It allows an attacker to cause Denial of Service.

РелизСтатусПримечание
bionic

ignored

end of standard support, was needs-triage
devel

not-affected

2.10.1-1
esm-apps/bionic

released

2.8.8-1ubuntu0.1~esm1
esm-apps/focal

released

2.9.1-1ubuntu0.1
esm-apps/jammy

not-affected

2.10.0-2
esm-apps/noble

not-affected

2.10.1-1
esm-apps/xenial

released

2.8.0~cvs20150510-1ubuntu0.1+esm1
esm-infra-legacy/trusty

released

2.7-8+deb8u3ubuntu0.1~esm1
focal

released

2.9.1-1ubuntu0.1
hirsute

ignored

end of life

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

needs-triage

esm-apps/focal

needs-triage

esm-apps/jammy

needs-triage

esm-apps/noble

needs-triage

esm-infra-legacy/trusty

DNE

focal

ignored

end of standard support, was needs-triage
hirsute

ignored

end of life
impish

ignored

end of life
jammy

needs-triage

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

hirsute

DNE

impish

DNE

jammy

DNE

kinetic

DNE

lunar

DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 29%
0.00106
Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2021-32276

CVSS3: 5.5
nvd
больше 4 лет назад

An issue was discovered in faad2 through 2.10.0. A NULL pointer dereference exists in the function get_sample() located in output.c. It allows an attacker to cause Denial of Service.

debian логотип

CVE-2021-32276

CVSS3: 5.5
debian
больше 4 лет назад

An issue was discovered in faad2 through 2.10.0. A NULL pointer derefe ...

github логотип

GHSA-hjhc-4jxh-xxxx

CVSS3: 5.5
github
больше 3 лет назад

An issue was discovered in faad2 through 2.10.0. A NULL pointer dereference exists in the function get_sample() located in output.c. It allows an attacker to cause Denial of Service.

fstec логотип

BDU:2022-01813

CVSS3: 6.5
fstec
больше 4 лет назад

Уязвимость функции get_sample() компонента output.c аудио декодера Freeware Advanced Audio Decoder 2 (FAAD2), позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 29%
0.00106
Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3