JLSEC-2026-21 Buffer Overflow vulnerability in function `bitwriter_grow_` in flac

Buffer Overflow vulnerability in function bitwritergrow in flac before 1.4.0 allows remote attackers to run arbitrary code via crafted input to the encoder...

SUSE CVE-2007-6277

Multiple buffer overflows in Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via large 1 Metadata Block Size, 2 VORBIS Comment String Size, 3 Picture Metadata MIME-TYPE Size, 4 Picture Description Size, 5 Picture Data Length, 6...

SUSE CVE-2007-6278

Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allows user-assisted remote attackers to force a client to download arbitrary files via the MIME-Type URL flag -- for the FLAC image file in a crafted .FLAC file...

SUSE CVE-2007-6279

Multiple double free vulnerabilities in Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via malformed 1 Seektable values or 2 Seektable Data Offsets in a .FLAC file...

SUSE CVE-2014-8962

Stack-based buffer overflow in streamdecoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file...

Arbitrary Code Executionary

The flac packages contain a decoder and an encoder for the FLAC Free Lossless Audio Codec audio file format. A buffer overflow flaw was found in the way flac decoded FLAC audio files. An attacker could create a specially crafted FLAC audio file that could cause an application using the flac libra...

flac: Heap buffer write overflow in read_residual_partitioned_rice_

A buffer overflow flaw was found in the way flac decoded FLAC audio files. An attacker could create a specially crafted FLAC audio file that could cause an application using the flac library to crash or execute arbitrary code when the file was read...

[SECURITY] [DLA 99-1] flac security update

Package : flac Version : 1.2.1-2+deb6u1 CVE ID : CVE-2014-8962 CVE-2014-9028 Michele Spagnuolo, of Google Security Team, and Miroslav Lichvar, of Red Hat, discovered two issues in flac, a library handling Free Lossless Audio Codec media: by providing a specially crafted FLAC file, an attacker cou...

[SECURITY] [DSA 3082-1] flac security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3082-1 [email protected] http://www.debian.org/security/ Sebastien Delafond November 30, 2014 http://www.debian.org/security/faq -...

DEBIAN-CVE-2014-9028

Heap-based buffer overflow in streamdecoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file...

Fedora Core 10 FEDORA-2009-11499 (libsndfile)

The remote host is missing an update to libsndfile announced via advisory FEDORA-2009-11499. OpenVAS Vulnerability Test $Id: fcore200911499.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-11499 libsndfile Authors: Thomas Reinke Copyright: Copyright ...

Fedora 10 : libsndfile-1.0.20-3.fc10 (2009-11499)

Version 1.0.20 2009-03-14 Fix potential heap overflow in VOC file parser Tobias Klein, http://www.trapkit.de/. Version 1.0.19 2009-03-02 Fix for CVE-2009-0186 Alin Rad Pop, Secunia Research. Huge number of minor bug fixes as a result of static analysis. Version 1.0.18 2009-02-07 Add Ogg/Vorbis...

SuSE 10 Security Update : libsndfile (ZYPP Patch Number 4431)

This update fixes a possible buffer overflow that occurs while reading decoded PCM data from the FLAC library. CVE-2007-4974 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...

libflac: Multiple security issues fixed in 1.2.1

Multiple buffer overflows in Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via large 1 Metadata Block Size, 2 VORBIS Comment String Size, 3 Picture Metadata MIME-TYPE Size, 4 Picture Description Size, 5 Picture Data Length, 6...

DEBIAN-CVE-2007-4619

Multiple integer overflows in Free Lossless Audio Codec FLAC libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code via a malformed FLAC file that triggers improper memory allocation, resulting in a heap-based buffer...