MiracleLinux 4 : flac-1.2.1-7.AXS4 (AXSA:2015-100:01)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2015-100:01 advisory. Description: The flac packages contain a decoder and an encoder for the FLAC Free Lossless Audio Codec audio file format. Security issues fixed with...

Linux Distros Unpatched Vulnerability : CVE-2014-9028

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based buffer overflow in streamdecoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file. CVE-2014-9028...

K17301056: libFLAC vulnerabilities CVE-2014-8962 and CVE-2014-9028

Security Advisory Description CVE-2014-8962 Stack-based buffer overflow in streamdecoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file. CVE-2014-9028 Heap-based buffer overflow in streamdecoder.c in libFLAC before 1.3.1 allows remote attacker...

SUSE: Security Advisory (SUSE-SU-2014:1577-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 3.0.1.0 : flac (EulerOS-SA-2019-1451)

According to the versions of the flac package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A buffer overflow flaw was found in the way flac decoded FLAC audio files. An attacker could create a specially crafted FLAC audio...

CVE-2014-9028

Heap-based buffer overflow in streamdecoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file...

Amazon Linux: Security Advisory (ALAS-2015-505)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for flac FEDORA-2015-13160

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 22 : flac-1.3.1-5.fc22 (2015-13145)

Update flac to fix security issue in xmms-flac plugin previously an independent subpackage that was out of date. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it ...

Fedora Update for flac FEDORA-2015-13145

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Amazon Linux AMI : flac (ALAS-2015-505)

A buffer overflow flaw was found in the way flac decoded FLAC audio files. An attacker could create a specially crafted FLAC audio file that could cause an application using the flac library to crash or execute arbitrary code when the file was read. CVE-2014-9028 A buffer over-read flaw was found...

CentOS Update for flac CESA-2015:0767 centos7

Check the version of flac SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882152";...

CentOS Update for flac CESA-2015:0767 centos6

Check the version of flac SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882157";...

RedHat Update for flac RHSA-2015:0767-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle Linux 6 / 7 : flac (ELSA-2015-0767)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-0767 advisory. - fix buffer overflow when processing ID3v2 metadata CVE-2014-8962 Tenable has extracted the preceding description block directly from the Oracle...

RHEL 6 / 7 : flac (RHSA-2015:0767)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:0767 advisory. The flac packages contain a decoder and an encoder for the FLAC Free Lossless Audio Codec audio file format. A buffer overflow flaw was...

flac security update

CentOS Errata and Security Advisory CESA-2015:0767 Updated flac packages that fix two security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores,...

flac security update

1.3.0-5 - fix buffer overflow when processing ID3v2 metadata CVE-2014-8962 - fix buffer overflow with invalid blocksize CVE-2014-9028...

Debian DLA-99-1 : flac security update

Michele Spagnuolo, of Google Security Team, and Miroslav Lichvar, of Red Hat, discovered two issues in flac, a library handling Free Lossless Audio Codec media: by providing a specially crafted FLAC file, an attacker could execute arbitrary code. CVE-2014-8962 heap-based buffer overflow in...

Fedora 19 : flac-1.3.1-1.fc19 (2014-16272)

Security fix for CVE-2014-9028, CVE-2014-8962 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...