15 matches found
CVE-2009-4676
Stack-based buffer overflow in JetCast.exe 2.0.4.1109 in jetAudio 7.5.2 and 7.5.3.15 allows remote attackers to execute arbitrary code via a long title in a FLAC file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
EUVD-2023-41231
Malicious code in bioql PyPI...
CVE-2024-41147
An out-of-bounds write vulnerability exists in the madrflacdecodesampleslpc functionality of Miniaudio miniaudio v0.11.21. A specially crafted .flac file can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
SUSE CVE-2007-6278
Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allows user-assisted remote attackers to force a client to download arbitrary files via the MIME-Type URL flag -- for the FLAC image file in a crafted .FLAC file...
SUSE CVE-2017-7586
In libsndfile before 1.0.28, an error in the "headerread" function common.c when handling ID3 tags can be exploited to cause a stack-based buffer overflow via a specially crafted FLAC file...
SUSE SLED12 / SLES12 Security Update : libsndfile (SUSE-SU-2017:1367-1)
This update for libsndfile fixes the following issues : - CVE-2017-8361: Global buffer overflow in flacbuffercopy. bsc1036946 - CVE-2017-8362: Invalid memory read in flacbuffercopy. bsc1036943 - CVE-2017-8363: Heap-based buffer overflow in flacbuffercopy. bsc1036945 - CVE-2017-7585, CVE-2017-7741...
SUSE-SU-2017:1367-1 Security update for libsndfile
This update for libsndfile fixes the following issues: - CVE-2017-8361: Global buffer overflow in flacbuffercopy. bsc1036946 - CVE-2017-8362: Invalid memory read in flacbuffercopy. bsc1036943 - CVE-2017-8363: Heap-based buffer overflow in flacbuffercopy. bsc1036945 - CVE-2017-7585, CVE-2017-7741,...
CVE-2017-7586
A buffer overflow flaw was found in the way libsndfile handled ID3 tags. This flaw could potentially be used to crash the application using libsndfile by tricking the application into processing specially crafted FLAC files...
CVE-2017-7585
A buffer overflow flaw was found in the way libsndfile handled FLAC files. This flaw could potentially be used to crash the application using libsndfile by tricking the application into processing specially crafted FLAC files...
UBUNTU-CVE-2017-7585
In libsndfile before 1.0.28, an error in the "flacbuffercopy" function flac.c can be exploited to cause a stack-based buffer overflow via a specially crafted FLAC file...
Fedora Update for flac FEDORA-2007-730
Check for the Version of flac OpenVAS Vulnerability Test Fedora Update for flac FEDORA-2007-730 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
Debian Security Advisory DSA 1442-2 (libsndfile)
The remote host is missing an update to libsndfile announced via advisory DSA 1442-2. OpenVAS Vulnerability Test $Id: deb14422.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1442-2 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian DSA-1442-1 : libsndfile - buffer overflow
Rubert Buchholz discovered that libsndfile, a library for reading / writing audio files, performs insufficient boundary checks when processing FLAC files, which might lead to the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...
Heap overflow
Multiple buffer overflows in Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via large 1 Metadata Block Size, 2 VORBIS Comment String Size, 3 Picture Metadata MIME-TYPE Size, 4 Picture Description Size, 5 Picture Data Length, 6...
CVE-2007-6279
Multiple double free vulnerabilities in Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via malformed 1 Seektable values or 2 Seektable Data Offsets in a .FLAC file...