faad2 - Debian Package Tracker

general

source: faad2 (main)
version: 2.10.1-1
maintainer: Debian Multimedia Maintainers (archive) (DMD)
uploaders: Reinhard Tartler [DMD] – Fabian Greffrath [DMD] – Matthew W. S. Bell [DMD]
arch: any
std-ver: 4.6.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2.10.0-1~deb10u1
o-o-sec: 2.10.0-1~deb10u1
oldstable: 2.10.0-1
stable: 2.10.1-1
testing: 2.10.1-1
unstable: 2.10.1-1

versioned links

2.10.0-1~deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.10.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.10.1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

faad (1 bugs: 0, 1, 0, 0)
libfaad-dev
libfaad2

action needed

2 security issues in trixie high

There are 2 open security issues in trixie.

2 important issues:

CVE-2023-38857: Buffer Overflow vulnerability infaad2 v.2.10.1 allows a remote attacker to execute arbitrary code and cause a denial of service via the stcoin function in mp4read.c.
CVE-2023-38858: Buffer Overflow vulnerability infaad2 v.2.10.1 allows a remote attacker to execute arbitrary code and cause a denial of service via the mp4info function in mp4read.c:1039.

Created: 2023-08-17 Last update: 2023-08-20 02:20

2 security issues in sid high

There are 2 open security issues in sid.

2 important issues:

CVE-2023-38857: Buffer Overflow vulnerability infaad2 v.2.10.1 allows a remote attacker to execute arbitrary code and cause a denial of service via the stcoin function in mp4read.c.
CVE-2023-38858: Buffer Overflow vulnerability infaad2 v.2.10.1 allows a remote attacker to execute arbitrary code and cause a denial of service via the mp4info function in mp4read.c:1039.

Created: 2023-08-17 Last update: 2023-08-20 02:20

1 bug tagged patch in the BTS normal

The BTS contains patches fixing 1 bug, consider including or untagging them.

Created: 2023-09-13 Last update: 2023-09-26 00:01

lintian reports 1 warning normal

Lintian reports 1 warning about this package. You should make the package lintian clean getting rid of them.

Created: 2022-07-30 Last update: 2023-02-04 19:02

2 low-priority security issues in bullseye low

There are 2 open security issues in bullseye.

2 issues left for the package maintainer to handle:

CVE-2023-38857: (needs triaging) Buffer Overflow vulnerability infaad2 v.2.10.1 allows a remote attacker to execute arbitrary code and cause a denial of service via the stcoin function in mp4read.c.
CVE-2023-38858: (needs triaging) Buffer Overflow vulnerability infaad2 v.2.10.1 allows a remote attacker to execute arbitrary code and cause a denial of service via the mp4info function in mp4read.c:1039.

You can find information about how to handle these issues in the security team's documentation.

Created: 2023-08-17 Last update: 2023-08-20 02:20

2 low-priority security issues in bookworm low

There are 2 open security issues in bookworm.

2 issues left for the package maintainer to handle:

CVE-2023-38857: (needs triaging) Buffer Overflow vulnerability infaad2 v.2.10.1 allows a remote attacker to execute arbitrary code and cause a denial of service via the stcoin function in mp4read.c.
CVE-2023-38858: (needs triaging) Buffer Overflow vulnerability infaad2 v.2.10.1 allows a remote attacker to execute arbitrary code and cause a denial of service via the mp4info function in mp4read.c:1039.

You can find information about how to handle these issues in the security team's documentation.

Created: 2023-08-17 Last update: 2023-08-20 02:20

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.6.2 instead of 4.6.0).

Created: 2022-05-11 Last update: 2022-12-17 19:18

news

[rss feed]

[2022-10-26] faad2 2.10.1-1 MIGRATED to testing (Debian testing watch)
[2022-10-20] Accepted faad2 2.10.1-1 (source) into unstable (Fabian Greffrath)
[2022-04-17] Accepted faad2 2.10.0-1~deb10u1 (source amd64) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Debian FTP Masters) (signed by: Moritz Mühlenhoff)
[2022-04-17] Accepted faad2 2.8.8-3+deb10u1 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Debian FTP Masters) (signed by: Moritz Mühlenhoff)
[2022-03-27] Accepted faad2 2.10.0-1~deb10u1 (source amd64) into oldstable->embargoed, oldstable (Debian FTP Masters) (signed by: Moritz Mühlenhoff)
[2022-03-27] Accepted faad2 2.8.8-3+deb10u1 (source) into oldstable->embargoed, oldstable (Debian FTP Masters) (signed by: Moritz Mühlenhoff)
[2021-10-26] faad2 2.10.0-2 MIGRATED to testing (Debian testing watch)
[2021-10-24] Accepted faad2 2.8.0~cvs20161113-1+deb9u3 (source amd64) into oldoldstable (Thorsten Alteholz)
[2021-10-21] Accepted faad2 2.10.0-2 (source) into unstable (Fabian Greffrath)
[2020-10-26] faad2 2.10.0-1 MIGRATED to testing (Debian testing watch)
[2020-10-20] Accepted faad2 2.10.0-1 (source) into unstable (Fabian Greffrath)
[2020-05-10] faad2 2.9.2-1 MIGRATED to testing (Debian testing watch)
[2020-05-04] Accepted faad2 2.9.2-1 (source) into unstable (Fabian Greffrath)
[2019-11-10] faad2 2.9.1-1 MIGRATED to testing (Debian testing watch)
[2019-11-04] Accepted faad2 2.9.1-1 (source) into unstable (Fabian Greffrath)
[2019-09-17] Accepted faad2 2.8.0~cvs20161113-1+deb9u2 (source amd64) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Hugo Lefeuvre)
[2019-09-17] faad2 2.9.0-1 MIGRATED to testing (Debian testing watch)
[2019-09-15] Accepted faad2 2.8.0~cvs20161113-1+deb9u2 (source amd64) into oldstable->embargoed, oldstable (Hugo Lefeuvre)
[2019-09-11] Accepted faad2 2.9.0-1 (source) into unstable (Fabian Greffrath)
[2019-09-03] faad2 2.8.8-3.2 MIGRATED to testing (Debian testing watch)
[2019-08-31] Accepted faad2 2.8.8-3.2 (source) into unstable (Hugo Lefeuvre)
[2019-08-28] Accepted faad2 2.7-8+deb8u3 (source amd64) into oldoldstable (Hugo Lefeuvre)
[2019-08-28] Accepted faad2 2.8.8-3.1 (source) into unstable (Hugo Lefeuvre)
[2019-06-10] faad2 2.8.8-3 MIGRATED to testing (Debian testing watch)
[2019-06-07] Accepted faad2 2.8.8-3 (source) into unstable (Sebastian Ramacher)
[2019-05-19] Accepted faad2 2.7-8+deb8u2 (source amd64) into oldstable (Hugo Lefeuvre)
[2019-04-22] faad2 2.8.8-2 MIGRATED to testing (Debian testing watch)
[2019-04-17] Accepted faad2 2.8.8-2 (source amd64) into unstable (Fabian Greffrath)
[2018-05-07] Accepted faad2 2.7-8+deb8u1 (source amd64) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Markus Koschany)
[2018-05-07] Accepted faad2 2.8.0~cvs20161113-1+deb9u1 (source amd64) into proposed-updates->stable-new, proposed-updates (Markus Koschany)

bugs [bug history graph]

all: 4
RC: 0
I&N: 3
M&W: 1
F&P: 0
patch: 1

links

homepage
lintian (0, 1)
buildd: logs, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.10.1-1
8 bugs