[SECURITY] Fedora 43 Update: uxplay-1.73.3-1.fc43

An AirPlay2 Mirror and AirPlay2 Audio but not Video server that provides screen-mirroring with audio of iOS/MacOS clients in a display window on the server host which can be shared using a screen-sharing application; Apple Lossless Audio ALAC e.g.,iTunes can be streamed from client to server in...

Memory Allocation with Excessive Size Value

Overview Affected versions of this package are vulnerable to Memory Allocation with Excessive Size Value via the drflacreadanddecodemetadata function. An attacker can cause excessive memory allocation by supplying crafted FLAC streams with maliciously controlled mimeLength and descriptionLength...

Advisory ROSA-SA-2026-3139

Software: flac 1.3.2 OS: ROSA Virtualization 3.0 unaffected versions = flac-1.3.2-9.rv30.1 affected versions flac-1.3.2-9.rv30.1 CVE-ID: CVE-2020-22219 BDU-ID: 2023-06152 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the bitwritergrow in function of the FLAC audio codec is related to an operation...

EUVD-2007-4601

Malware in sbrugna...

EUVD-2015-6760

Malware in sbrugna...

EUVD-2024-19188

Malicious code in bioql PyPI...

The vulnerability of FLAC files in the Gstreamer multimedia framework, related to integer overflow or cyclic transitions, allows attackers to execute arbitrary code.

The vulnerability of the FLAC file format used by the Gstreamer multimedia framework is related to integer overflow or cyclic redundancy checks. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

PT-2024-40824 · Flac · Flac

Name of the Vulnerable Software and Affected Versions: FLAC affected versions not specified Description: The issue is related to a crash caused by the use of an uninitialized value. The crash occurs in the FLAC replaygain synthesis apply gain function, which is called from the write callback and...

gstreamer-plugins-good: integer overflow leading to heap overwrite in FLAC image tag handling

A heap-based buffer overflow vulnerability was found in the FLAC parser in GStreamer. This issue occurs when processing malformed image tags, which could allow a malicious third party to induce a crash in the application and potentially execute code by manipulating the heap...

AZL-44097 CVE-2023-37327 affecting package gstreamer1-plugins-base 1.20.0-3

GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

gstreamer-plugins-good: integer overflow leading to heap overwrite in FLAC image tag handling

A heap-based buffer overflow vulnerability was found in the FLAC parser in GStreamer. This issue occurs when processing malformed image tags, which could allow a malicious third party to induce a crash in the application and potentially execute code by manipulating the heap...

[SECURITY] Fedora 39 Update: uxplay-1.68.2-3.fc39

An AirPlay2 Mirror and AirPlay2 Audio but not Video server that provides screen-mirroring with audio of iOS/MacOS clients in a display window on the server host which can be shared using a screen-sharing application; Apple Lossless Audio ALAC e.g.,iTunes can be streamed from client to server in...

[SECURITY] Fedora 39 Update: uxplay-1.66-2.fc39

An AirPlay2 Mirror and AirPlay2 Audio but not Video server that provides screen-mirroring with audio of iOS/MacOS clients in a display window on the server host which can be shared using a screen-sharing application; Apple Lossless Audio ALAC e.g.,iTunes can be streamed from client to server in...

The vulnerability of the bitwriter_grow_ function in the FLAC audio codec allows a hacker to execute arbitrary code.

The vulnerability of the bitwritergrow function in the FLAC audio codec is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

[SECURITY] Fedora 37 Update: flac-1.3.4-3.fc37

FLAC stands for Free Lossless Audio Codec. Grossly oversimplified, FLAC is similar to Ogg Vorbis, but lossless. The FLAC project consists of the stream format, reference encoders and decoders in library form, flac, a command-line program to encode and decode FLAC files, metaflac, a command-line...

Important: Red Hat Security Advisory: flac security update

An update for flac is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

Important: flac security update

FLAC stands for Free Lossless Audio Codec. FLAC is similar to Ogg Vorbis, but lossless. The FLAC project consists of the stream format, reference encoders and decoders in library form, a command-line program to encode and decode FLAC files, and a command-line metadata editor for FLAC files...

ALSA-2023:5046 Important: flac security update

FLAC stands for Free Lossless Audio Codec. FLAC is similar to Ogg Vorbis, but lossless. The FLAC project consists of the stream format, reference encoders and decoders in library form, a command-line program to encode and decode FLAC files, and a command-line metadata editor for FLAC files...

ALSA-2023:5048 Important: flac security update

FLAC stands for Free Lossless Audio Codec. FLAC is similar to Ogg Vorbis, but lossless. The FLAC project consists of the stream format, reference encoders and decoders in library form, a command-line program to encode and decode FLAC files, and a command-line metadata editor for FLAC files...

Important: flac security update

FLAC stands for Free Lossless Audio Codec. FLAC is similar to Ogg Vorbis, but lossless. The FLAC project consists of the stream format, reference encoders and decoders in library form, a command-line program to encode and decode FLAC files, and a command-line metadata editor for FLAC files...