VYPR

Libaacplus

by Libaacplus Project

CVEs (3)

  • CVE-2017-7605HigApr 9, 2017
    risk 0.51cvss 7.8epss 0.02

    aacplusenc.c in HE-AAC+ Codec (aka libaacplus) 2.0.2 has an assertion failure, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted audio file.

  • CVE-2017-7604HigApr 9, 2017
    risk 0.51cvss 7.8epss 0.01

    au_channel.h in HE-AAC+ Codec (aka libaacplus) 2.0.2 has a left-shift undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted audio file.

  • CVE-2017-7603HigApr 9, 2017
    risk 0.51cvss 7.8epss 0.01

    au_channel.h in HE-AAC+ Codec (aka libaacplus) 2.0.2 has a signed integer overflow, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted audio file.