libFLAC contains multiple vulnerabilities, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.
FLAC (Free Lossless Audio Codec) is a lossless audio format. libFLAC is a library that can process FLAC files. libFLAC contains multiple vulnerabilities, including:
By convincing a user to open a specially crafted FLAC file, a remote, unauthenticated attacker may be able to execute arbitrary code or cause a denial-of-service condition on a vulnerable system.
Apply an update
This vulnerability was reported by Andre Protas of eEye Digital Security, who in turn credit Greg Linares.
This document was written by Will Dormann.
|Date First Published:||2007-11-15|
|Date Last Updated:||2007-11-19 18:00 UTC|