This page lists publicly disclosed CVE vulnerabilities affecting libaacplus_project libaacplus (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2017-7605 | aacplusenc.c in HE-AAC+ Codec (aka libaacplus) 2.0.2 has an assertion failure, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted audio file. | [email protected] | 7.8 | 0.21% | 2017-04-09 | 2026-05-13 |
| CVE-2017-7604 | au_channel.h in HE-AAC+ Codec (aka libaacplus) 2.0.2 has a left-shift undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted audio file. | [email protected] | 7.8 | 0.21% | 2017-04-09 | 2026-05-13 |
| CVE-2017-7603 | au_channel.h in HE-AAC+ Codec (aka libaacplus) 2.0.2 has a signed integer overflow, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted audio file. | [email protected] | 7.8 | 0.21% | 2017-04-09 | 2026-05-13 |