0.002 Low
EPSS
Percentile
54.2%
faad2 is vulnerable to arbitrary code execution. A buffer overflow vulnerability in the faad_resetbits function in libfaad/bits.c allows an attacker to execute arbitrary code in the system.
faad_resetbits
libfaad/bits.c
github.com/knik0/faad2/commit/942c3e0aee748ea6fe97cb2c1aa5893225316174
lists.debian.org/debian-lts-announce/2019/08/msg00033.html
seclists.org/bugtraq/2019/Sep/28
security.gentoo.org/glsa/202006-17
www.debian.org/security/2019/dsa-4522