837 matches found
CVE-2007-4619
Multiple integer overflows in Free Lossless Audio Codec FLAC libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code via a malformed FLAC file that triggers improper memory allocation, resulting in a heap-based buffer...
CVE-2007-4619
Multiple integer overflows in Free Lossless Audio Codec FLAC libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code via a malformed FLAC file that triggers improper memory allocation, resulting in a heap-based buffer...
GLSA-200710-04 : libsndfile: Buffer overflow
The remote host is affected by the vulnerability described in GLSA-200710-04 libsndfile: Buffer overflow Robert Buchholz of the Gentoo Security team discovered that the flacbuffercopy function does not correctly handle FLAC streams with variable block sizes which leads to a heap-based buffer...
libsndfile: Buffer overflow
Background libsndfile is a library for reading and writing various formats of audio files including WAV and FLAC. Description Robert Buchholz of the Gentoo Security team discovered that the flacbuffercopy function does not correctly handle FLAC streams with variable block sizes which leads to a...
USN-525-1: libsndfile vulnerability
Robert Buchholz discovered that libsndfile did not correctly validate the size of its memory buffers. If a user were tricked into playing a specially crafted FLAC file, a remote attacker could execute arbitrary code with user privileges...
Mandrake Linux Security Advisory : libsndfile (MDKSA-2007:191)
A heap-based buffer overflow in libsndfile could allow remote attackers to execute arbitrary code via a FLAC file with crafted PCM data which contains a block with a size exceeding that of the previous block. Updated packages have been patched to prevent this issue. %NASLMINLEVEL 70300 C Tenable...
CVE-2007-4974
Heap-based buffer overflow in the flacbuffercopy function in libsndfile 1.0.17 and earlier might allow remote attackers to execute arbitrary code via a FLAC file with crafted PCM data containing a block with a size that exceeds the previous block size...
DEBIAN-CVE-2007-4974
Heap-based buffer overflow in the flacbuffercopy function in libsndfile 1.0.17 and earlier might allow remote attackers to execute arbitrary code via a FLAC file with crafted PCM data containing a block with a size that exceeds the previous block size...
Heap overflow
Heap-based buffer overflow in the flacbuffercopy function in libsndfile 1.0.17 and earlier might allow remote attackers to execute arbitrary code via a FLAC file with crafted PCM data containing a block with a size that exceeds the previous block size...
CVE-2007-4974
Heap-based buffer overflow in the flacbuffercopy function in libsndfile 1.0.17 and earlier might allow remote attackers to execute arbitrary code via a FLAC file with crafted PCM data containing a block with a size that exceeds the previous block size...
CVE-2007-4974
Heap-based buffer overflow in the flacbuffercopy function in libsndfile 1.0.17 and earlier might allow remote attackers to execute arbitrary code via a FLAC file with crafted PCM data containing a block with a size that exceeds the previous block size...
CVE-2007-4974
Heap-based buffer overflow in the flacbuffercopy function in libsndfile 1.0.17 and earlier might allow remote attackers to execute arbitrary code via a FLAC file with crafted PCM data containing a block with a size that exceeds the previous block size...
CVE-2007-4974
Technical details about CVE-2007-4974 are not publicly provided in the connected documents. No concrete information on affected versions, impact or fixes is included here; monitor for official updates.
CVE-2007-4974
Heap-based buffer overflow in the flacbuffercopy function in libsndfile 1.0.17 and earlier might allow remote attackers to execute arbitrary code via a FLAC file with crafted PCM data containing a block with a size that exceeds the previous block size...
[SECURITY] Fedora 7 Update: flac123-0.0.11-1.fc7
flac123 is a command-line program for playing FLAC audio files FLAC stands for Free Lossless Audio Codec. Grossly oversimplified, FLAC is similar to Ogg Vorbis, but lossless...
Stack overflow
Stack-based buffer overflow in the localvcentryparsevalue function in vorbiscomment.c in flac123 aka flac-tools or flac before 0.0.10 allows user-assisted remote attackers to execute arbitrary code via a large comment valuelength...
CVE-2006-7075
Buffer overflow in the metareadflac function in metadecoder.c for Aqualung 0.9beta5 and earlier, and CVS 0.193.2 and earlier, allows user-assisted attackers to execute arbitrary code via a long Vorbis comment in a Free Lossless Audio Codec FLAC file...