ALAS-2015-505 --- flacID: oval:org.secpod.oval:def:1200007 | Date: (C)2015-12-29 (M)2023-11-13 |
Class: PATCH | Family: unix |
A buffer overflow flaw was found in the way flac decoded FLAC audio files. An attacker could create a specially crafted FLAC audio file that could cause an application using the flac library to crash or execute arbitrary code when the file was read. A buffer over-read flaw was found in the way flac processed certain ID3v2 metadata. An attacker could create a specially crafted FLAC audio file that could cause an application using the flac library to crash when the file was read
Platform: |
Amazon Linux AMI |