CVE-2021-32272
Summary
| CVE | CVE-2021-32272 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2021-09-20 16:15:00 UTC |
|---|
| Updated | 2022-04-22 16:20:00 UTC |
|---|
| Description | An issue was discovered in faad2 before 2.10.0. A heap-buffer-overflow exists in the function stszin located in mp4read.c. It allows an attacker to cause Code Execution. |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| fix heap-buffer-overflow in mp4read.c · knik0/faad2@1b71a6b · GitHub |
MISC |
github.com |
|
| Debian -- Security Information -- DSA-5109-1 faad2 |
DEBIAN |
www.debian.org |
|
| A heap-buffer-overflow in mp4read.c:355:29 · Issue #57 · knik0/faad2 · GitHub |
MISC |
github.com |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 179159 Debian Security Update for faad2 (DSA 5109-1)
- 180565 Debian Security Update for faad2 (CVE-2021-32272)
- 502582 Alpine Linux Security Update for faad2
- 504734 Alpine Linux Security Update for faad2
