The wavopenread function in frontend/input.c in Freeware Advanced Audio Coder (FAAC) 1.28 allows remote attackers to cause a denial of service (large loop) via a crafted wav file.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1.29.7.7-1", "binary_name": "faac" }, { "binary_version": "1.29.7.7-1", "binary_name": "faac-dbgsym" }, { "binary_version": "1.29.7.7-1", "binary_name": "libfaac-dev" }, { "binary_version": "1.29.7.7-1", "binary_name": "libfaac0" }, { "binary_version": "1.29.7.7-1", "binary_name": "libfaac0-dbgsym" } ] }