flac123 -- stack overflow in comment parsing

2007-06-05T00:00:00
ID 32D38CBB-2632-11DC-94DA-0016179B2DD5
Type freebsd
Reporter FreeBSD
Modified 2007-08-10T00:00:00

Description

isecpartners reports:

flac123, also known as flac-tools, is vulnerable to a buffer overflow in vorbis comment parsing. This allows for the execution of arbitrary code.