Format: 1.8
Date: Tue, 22 Aug 2023 14:07:04 +0100
Source: faad2
Binary: faad libfaad-dev libfaad2
Architecture: i386
Version: 2.9.1-1ubuntu0.1
Distribution: focal
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lcy02-amd64-036.buildd>
Changed-By: Amir Naseredini <amir.naseredini@canonical.com>
Description:
 faad       - freeware Advanced Audio Decoder player
 libfaad-dev - freeware Advanced Audio Decoder - development files
 libfaad2   - freeware Advanced Audio Decoder - runtime files
Changes:
 faad2 (2.9.1-1ubuntu0.1) focal-security; urgency=medium
 .
   * SECURITY UPDATE: Arbitrary Code Execution
     - debian/patches/CVE-2021-32272.patch: fixed a buffer overflow in stszin
       function.
     - debian/patches/CVE-2021-32273.patch: fixed a buffer overflow in ftypin
       function.
     - debian/patches/CVE-2021-32274.patch: fixed two buffer overflows, one in
       sbr_qmf_synthesis_64 function (CVE-2021-32274) and the other one in
       sbr_qmf_analysis_32 function (CVE-2021-32277).
     - debian/patches/CVE-2021-32278.patch: fixed a buffer overflow in
       lt_prediction function.
     - debian/patches/CVE-2023-38857-[1-2].patch: fixed a buffer overflow in
       stcoin function.
     - debian/patches/CVE-2023-38858.patch: fixed a buffer overflow in mp4info
       function
     - CVE-2021-32272
     - CVE-2021-32273
     - CVE-2021-32274
     - CVE-2021-32277
     - CVE-2021-32278
     - CVE-2023-38857
     - CVE-2023-38858
   * SECURITY UPDATE: Denial of Service
     - debian/patches/CVE-2021-32276.patch: fixed a null pointer dereference in
       get_sample function.
     - CVE-2021-32276
Checksums-Sha1:
 8a5cb959e7023c2316e1aa35fe2fea7b1f5cf3d5 43232 faad-dbgsym_2.9.1-1ubuntu0.1_i386.ddeb
 bcc518c5ccb6a4034e6186868378c9aa82771c06 6256 faad2_2.9.1-1ubuntu0.1_i386.buildinfo
 86e8f35bee5245a3dff062ba0ab3fbe8c59046ca 22228 faad_2.9.1-1ubuntu0.1_i386.deb
 bb68bd9575fd6944c05a4023e0a3284842df700d 169372 libfaad-dev_2.9.1-1ubuntu0.1_i386.deb
 3bd5c9259d4037b5a7058fd30be3983f2ed875e0 398996 libfaad2-dbgsym_2.9.1-1ubuntu0.1_i386.ddeb
 c5765ff2c407fee3f1a11e1eb7763fca5b41e440 152600 libfaad2_2.9.1-1ubuntu0.1_i386.deb
Checksums-Sha256:
 9617ced1ef6a91779c98f01a543b4ebd09de3fa175e4f1aabc881261c5b1687e 43232 faad-dbgsym_2.9.1-1ubuntu0.1_i386.ddeb
 31410b9d219cd4994a60fb9d146129e40eae66bbd6945a92d11912d2a5f69fac 6256 faad2_2.9.1-1ubuntu0.1_i386.buildinfo
 06ffbb5892b7bf0627ba05457f19cdfc46fbf5c52356e928a3594206f50985e7 22228 faad_2.9.1-1ubuntu0.1_i386.deb
 f4bac0df8506275b8510f1551aba613460b05f9588ab9fe198e0f57d5f6f5c80 169372 libfaad-dev_2.9.1-1ubuntu0.1_i386.deb
 a51f7b55ce23d8fb4e7529067cf6a53df4b081515113fb3bd70d486e4741ca84 398996 libfaad2-dbgsym_2.9.1-1ubuntu0.1_i386.ddeb
 e838b677a7bc00509554d0c6ed9fa5e5f88e7d79b50aa9f387e119e54f427168 152600 libfaad2_2.9.1-1ubuntu0.1_i386.deb
Files:
 0d4fe70c2a3ec132647e19efd1d136f5 43232 debug optional faad-dbgsym_2.9.1-1ubuntu0.1_i386.ddeb
 2f1276c9fa9334ac1c2842d8b9269a59 6256 libs optional faad2_2.9.1-1ubuntu0.1_i386.buildinfo
 4aeaeb37df288296c9a68dd494240e5b 22228 sound optional faad_2.9.1-1ubuntu0.1_i386.deb
 46915ab85c6eeb612f83287044e58add 169372 libdevel optional libfaad-dev_2.9.1-1ubuntu0.1_i386.deb
 ba1c6d9db68ad3512c32a2af0819124b 398996 debug optional libfaad2-dbgsym_2.9.1-1ubuntu0.1_i386.ddeb
 e457e6ac64b69ffe2d1639c8a109c929 152600 libs optional libfaad2_2.9.1-1ubuntu0.1_i386.deb
Original-Maintainer: Debian Multimedia Maintainers <debian-multimedia@lists.debian.org>