51 matches found
MiracleLinux 9 : flac-1.3.3-10.el9 (AXSA:2023-4696:01)
The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4696:01 advisory. flac: out of bound write in appendtoverifyfifointerleaved of streamencoder.c CVE-2021-0561 Tenable has extracted the preceding description block directly fro...
RHEL 8 : flac (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - flac: out of bound write in appendtoverifyfifointerleaved of streamencoder.c CVE-2021-0561 - In...
CentOS 9 : flac-1.3.3-10.el9
The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the flac-1.3.3-10.el9 build changelog. - In appendtoverifyfifointerleaved of streamencoder.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local...
Rocky Linux 9 : flac (RLSA-2022:8078)
The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:8078 advisory. - In appendtoverifyfifointerleaved of streamencoder.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local informatio...
Amazon Linux 2 : flac (ALAS-2023-2106)
The version of flac installed on the remote host is prior to 1.3.0-5. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2106 advisory. An out-of-bounds write vulnerability was found in libFlak. The vulnerability occurs due to a missing bounds check. This flaw allows a...
EulerOS Virtualization 3.0.2.0 : flac (EulerOS-SA-2023-1731)
According to the versions of the flac package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In appendtoverifyfifointerleaved of streamencoder.c, there is a possible out of bounds write due to a missing bounds check. This cou...
Medium: flac
Issue Overview: An out-of-bounds write vulnerability was found in libFlak. The vulnerability occurs due to a missing bounds check. This flaw allows a local attacker without additional execution privileges to cause local information disclosure. CVE-2021-0561 Affected Packages: flac Issue Correctio...
Amazon Linux 2023 : flac, flac-devel, flac-libs (ALAS2023-2023-008)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-008 advisory. An out-of-bounds write vulnerability was found in libFlak. The vulnerability occurs due to a missing bounds check. This flaw allows a local attacker without additional execution privileges to cause loca...
EulerOS Virtualization 3.0.2.6 : flac (EulerOS-SA-2023-1089)
According to the versions of the flac package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In appendtoverifyfifointerleaved of streamencoder.c, there is a possible out of bounds write due to a missing bounds check. This cou...
openSUSE 15 Security Update : vlc (openSUSE-SU-2022:10252-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:10252-1 advisory. - In FLACbitreaderreadricesignedblock of bitreader.c, there is a possible out of bounds read due to a heap buffer overflow. This could lea...
Western Digital My Cloud Multiple Products 5.x < 5.25.124 Multiple Vulnerabilities (WDC-22019)
Multiple Western Digital My Cloud products are prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progr...
USN-5733-1: FLAC vulnerabilities | Cloud Foundry
Severity Low Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Description It was discovered that FLAC was not properly performing memory management operations, which could result in a memory leak. An attacker could possibly use this issue to cause FLAC to...
flac security update
1.3.3-10 - handle end-of-stream when encoding with verification CVE-2021-0561...
Oracle Linux 9 : flac (ELSA-2022-8078)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-8078 advisory. 1.3.3-10 - handle end-of-stream when encoding with verification CVE-2021-0561 Tenable has extracted the preceding description block directly from the Oracle Lin...
Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS : FLAC vulnerabilities (USN-5733-1)
The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5733-1 advisory. It was discovered that FLAC was not properly performing memory management operations, which could result in a memory...
Moderate: Red Hat Security Advisory: flac security update
An update for flac is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...
ALSA-2022:8078 Moderate: flac security update
FLAC stands for Free Lossless Audio Codec. FLAC is similar to Ogg Vorbis, but lossless. The FLAC project consists of the stream format, reference encoders and decoders in library form, a command-line program to encode and decode FLAC files, and a command-line metadata editor for FLAC files...
Amazon Linux 2022 : flac, flac-devel, flac-libs (ALAS2022-2022-163)
It is, therefore, affected by a vulnerability as referenced in the ALAS2022-2022-163 advisory. An out-of-bounds write vulnerability was found in libFlak. The vulnerability occurs due to a missing bounds check. This flaw allows a local attacker without additional execution privileges to cause loca...
Huawei EulerOS: Security Advisory for flac (EulerOS-SA-2022-2556)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 3.0.6.6 : flac (EulerOS-SA-2022-2496)
According to the versions of the flac package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In appendtoverifyfifointerleaved of streamencoder.c, there is a possible out of bounds write due to a missing bounds check. This cou...