Linux Distros Unpatched Vulnerability : CVE-2026-32836

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drlibs drflac.h version 0.13.3 and earlier fixed in commits fefced4, 4f5a4cd, and 663239a contain an uncontrolled memory allocation vulnerability in...

MGASA-2026-0169 Updated sdl2_sound packages fix security vulnerability

Updated packages fix CVE-2025-14369 in bundled drflac...

CVE-2026-32836

drlibs drflac.h version 0.13.3 and earlier fixed in commits fefced4, 4f5a4cd, and 663239a contain an uncontrolled memory allocation vulnerability in drflacreadanddecodemetadata that allows attackers to trigger excessive memory allocation by supplying crafted PICTURE metadata blocks. Attackers can...

Fedora 43 : SDL2_sound (2026-6ea6f0a56b)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-6ea6f0a56b advisory. Latest upstream snapshot from stable-2.0 branch. Fixes CVE-2025-14369 in bundled drflac. Tenable has extracted the preceding description block directly from...

Fedora 44 : dr_libs (2026-c2889d2725)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-c2889d2725 advisory. drflac ======= v0.13.3 - 2026-01-17 -------------------- - Fix a compiler compatibility issue with some inlined assembly. - Fix a compilation warning. drmp3...

Fedora 43 : dr_libs (2026-d1d665c9d5)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-d1d665c9d5 advisory. drflac ======= v0.13.3 - 2026-01-17 -------------------- - Fix a compiler compatibility issue with some inlined assembly. - Fix a compilation warning. drmp3...

Linux Distros Unpatched Vulnerability : CVE-2025-14369

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drflac, an audio decoder within the drlibs toolset, contains an integer overflow vulnerability flaw due to trusting the totalPCMFrameCount field from FLAC...

CVE-2025-14369

A flaw was found in drflac, an audio decoder within the drlibs toolset. This integer overflow vulnerability occurs due to the tool trusting the totalPCMFrameCount field from FLAC Free Lossless Audio Codec metadata without proper buffer size calculation. An attacker can exploit this by providing a...

CVE-2025-14369

drflac, an audio decoder within the drlibs toolset, contains an integer overflow vulnerability flaw due to trusting the totalPCMFrameCount field from FLAC metadata before calculating buffer size, allowing an attacker with a specially crafted file to perform DoS against programs using the tool...

CVE-2025-14369

drflac, an audio decoder within the drlibs toolset, contains an integer overflow vulnerability flaw due to trusting the totalPCMFrameCount field from FLAC metadata before calculating buffer size, allowing an attacker with a specially crafted file to perform DoS against programs using the tool...

DEBIAN-CVE-2025-14369

drflac, an audio decoder within the drlibs toolset, contains an integer overflow vulnerability flaw due to trusting the totalPCMFrameCount field from FLAC metadata before calculating buffer size, allowing an attacker with a specially crafted file to perform DoS against programs using the tool...

CVE-2025-14369

drflac, an audio decoder within the drlibs toolset, contains an integer overflow vulnerability flaw due to trusting the totalPCMFrameCount field from FLAC metadata before calculating buffer size, allowing an attacker with a specially crafted file to perform DoS against programs using the tool...

CVE-2025-14369 CVE-2025-14369

drflac, an audio decoder within the drlibs toolset, contains an integer overflow vulnerability flaw due to trusting the totalPCMFrameCount field from FLAC metadata before calculating buffer size, allowing an attacker with a specially crafted file to perform DoS against programs using the tool...

CVE-2025-14369

CVE-2025-14369 affects dr_flac, the FLAC audio decoder in the dr_libs toolset. A vulnerability arises from an integer overflow caused by trusting the totalPCMFrameCount field from FLAC metadata when calculating the buffer size, which can allow a specially crafted FLAC file to cause a Denial of Se...

Fedora 43 : dr_libs (2025-894ea1b6a5)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-894ea1b6a5 advisory. drflac v0.13.2 - 2025-12-02 - Improve robustness of the parsing of picture metadata to improve support for memory constrained embedded devices. - Fix a warni...