837 matches found
Updated sdl2_sound packages fix security vulnerability
Updated packages fix CVE-2025-14369 in bundled drflac...
Astra Linux - уязвимость в libsndfile
A out-of-bounds read flaw was discovered in the FLAC codec functionality of libsndfile. An attacker who can submit a specially crafted file by tricking a user into opening it or otherwise to an application that uses libsndfile and the FLAC codec, could trigger an out-of-bounds read. This would mo...
Astra Linux - уязвимость в flac
A buffer overflow vulnerability exists in the function bitwritergrow in FLAC before version 1.4.0, allowing remote attackers to execute arbitrary code through crafted inputs to the encoder...
Astra Linux - уязвимость в flac
In FLACbitreaderreadricesignedblock of bitreader.c, there is a potential out-of-bounds read due to a heap buffer overflow. This could lead to remote information disclosure without requiring additional execution privileges. User interaction is required for exploitation. Product: Android. Versions:...
Astra Linux - уязвимость в gst-plugins-good1.0
GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...
Astra Linux - уязвимость в flac
In streamencoder.c, there is a potential out-of-bounds write due to a missing bounds check. This could lead to exposure of local information without requiring additional execution privileges. User interaction is not required for exploitation. Product: Android Versions: Android-11 Android ID:...
JLSEC-2026-21 Buffer Overflow vulnerability in function `bitwriter_grow_` in flac
Buffer Overflow vulnerability in function bitwritergrow in flac before 1.4.0 allows remote attackers to run arbitrary code via crafted input to the encoder...
EUVD-2026-14710
Out-of-bounds Read vulnerability in tildearrow furnace extern/libsndfile-modified/src modules. This vulnerability is associated with program files flac.C. This issue affects furnace: before 0.7...
CVE-2026-4732
Out-of-bounds Read vulnerability in tildearrow furnace extern/libsndfile-modified/src modules. This vulnerability is associated with program files flac.C. This issue affects furnace: before 0.7...
CVE-2026-4732 Out-of-bounds Read Overflow in tildearrow/furnace
Out-of-bounds Read vulnerability in tildearrow furnace extern/libsndfile-modified/src modules. This vulnerability is associated with program files flac.C. This issue affects furnace: before 0.7...
PT-2026-27310
Name of the Vulnerable Software and Affected Versions furnace versions prior to 0.7 Description An out-of-bounds read issue exists in the furnace software within the extern/libsndfile-modified/src modules when processing flac.C program files. Recommendations Update to a version of furnace at or...
Furnace 安全漏洞
Furnace is a chip tuning tracker developed by tildearrow. Versions of Furnace prior to 0.7 contained a security vulnerability, which was caused by out-of-bound reading, potentially causing issues with the program file flac.C...
SUSE CVE-2026-32836
drlibs drflac.h version 0.13.3 and earlier fixed in commits fefced4, 4f5a4cd, and 663239a contain an uncontrolled memory allocation vulnerability in drflacreadanddecodemetadata that allows attackers to trigger excessive memory allocation by supplying crafted PICTURE metadata blocks. Attackers can...
CVE-2026-32836
An uncontrolled memory allocation vulnerability has been discovered in the drlibs library. The drflacreadanddecodemetadata function allows attackers to trigger excessive memory allocation by supplying crafted PICTURE metadata blocks. Attackers can exploit attacker-controlled mimeLength and...
EUVD-2026-12631
drlibs version 0.13.3 and earlier contain an uncontrolled memory allocation vulnerability in drflacreadanddecodemetadata that allows attackers to trigger excessive memory allocation by supplying crafted PICTURE metadata blocks. Attackers can exploit attacker-controlled mimeLength and...
Memory Allocation with Excessive Size Value
Overview Affected versions of this package are vulnerable to Memory Allocation with Excessive Size Value via the drflacreadanddecodemetadata function. An attacker can cause excessive memory allocation by supplying crafted FLAC streams with maliciously controlled mimeLength and descriptionLength...
Memory Allocation with Excessive Size Value
Overview Affected versions of this package are vulnerable to Memory Allocation with Excessive Size Value via the drflacreadanddecodemetadata function. An attacker can cause excessive memory allocation by supplying crafted FLAC streams with maliciously controlled mimeLength and descriptionLength...
CVE-2026-32836
drlibs drflac.h version 0.13.3 and earlier fixed in commits fefced4, 4f5a4cd, and 663239a contain an uncontrolled memory allocation vulnerability in drflacreadanddecodemetadata that allows attackers to trigger excessive memory allocation by supplying crafted PICTURE metadata blocks. Attackers can...
CVE-2026-32836 mackron / dr_libs dr_flac.h Excessive Memory Allocation in PICTURE Metadata Parsing
drlibs drflac.h version 0.13.3 and earlier fixed in commits fefced4, 4f5a4cd, and 663239a contain an uncontrolled memory allocation vulnerability in drflacreadanddecodemetadata that allows attackers to trigger excessive memory allocation by supplying crafted PICTURE metadata blocks. Attackers can...
CVE-2026-32836
CVE-2026-32836 affects dr_libs up to version 0.13.3, where drflac__read_and_decode_metadata() can trigger uncontrolled memory allocation via crafted PICTURE metadata blocks. Attackers can set attacker-controlled mimeLength and descriptionLength to cause memory exhaustion and denial of service whi...