Opened 5 years ago

Closed 5 years ago

Last modified 5 years ago

#13420 closed enhancement (fixed)

faac-1.30 (CVE-2018-19886)

Reported by: Bruce Dubbs Owned by: Bruce Dubbs
Priority: high Milestone: 10.0
Component: BOOK Version: SVN
Severity: normal Keywords:
Cc:

Description

Now at github: https://github.com/knik0/faac

Report by Leandro Nini via blfs-support.

Change History (5)

comment:1 by Bruce Dubbs, 5 years ago

Owner: changed from blfs-book to Bruce Dubbs
Status: newassigned

comment:2 by Xi Ruoyao, 5 years ago

Priority: normalhigh
Summary: faac-1.30faac-1.30 (CVE-2018-19886) 
[ Robert Kausch ]

Fix Joint Stereo coding
[ Krzysztof Nikiel ]

Code cleanup and compilation fixes
Fix endianness conversion functions
[ Takashi Yoshi ]

Fix compilation with GCC < 4.6
Fix compilation on big endian systems
[ Fabian Greffrath ]

Fix division by zero errors
Fix compilation with GCC <= 4.7.3
Change pointer type for proper arithmetics
Fix logic error in compiler detection
Revert back to some more generic SSE2 code
Fix a memory leak
Fix some cppcheck warnings in the Cfaac code
Check index ranges before dereferencing book arrays (CVE-2018-19886)
Clean up stdint.h header inclusions
Consistently use stdint.h types
[ Michael Fink ]

Update Visual Studio 2017 projects
Add stdint.h header inclusions
Port over ac2ver tool from faad2 to generate PACKAGE_VERSION
when compiling with Visual Studio
[ Eugène Filin ]

Memory allocations redefined

comment:3 by Bruce Dubbs, 5 years ago

Resolution: fixed
Status: assignedclosed

Fixed at revision 22999.

comment:4 by Bruce Dubbs, 5 years ago

Milestone: 9.210,0

Milestone renamed

comment:5 by Bruce Dubbs, 5 years ago

Milestone: 10,010.0

Milestone renamed

Note: See TracTickets for help on using tickets.