NotCVE - vendor:"Flac"

Page 2 of 8 results (0.008 seconds)

CVSS: 9.3EPSS: 31%CPEs: 1EXPL: 0

CVE-2007-6277 – libflac: Multiple security issues fixed in 1.2.1

https://notcve.org/view.php?id=CVE-2007-6277

Multiple buffer overflows in Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via large (1) Metadata Block Size, (2) VORBIS Comment String Size, (3) Picture Metadata MIME-TYPE Size, (4) Picture Description Size, (5) Picture Data Length, (6) Padding Length, and (7) PICTURE Metadata width and height values in a .FLAC file, which result in a heap-based overflow; and large (8) VORBIS Comment String Size Length, (9) Picture MIME-Type, (10) Picture MIME-Type URL, and (11) Picture Description Length values in a .FLAC file, which result in a stack-based overflow. NOTE: some of these issues may overlap CVE-2007-4619. Múltiples desbordamientos de buffer en Free Lossless Audio Codec (FLAC), en versiones anteriores a la 1.2.1. Permite que atacantes remotos,con intervención del usuario, ejecuten código de su elección usando tamaños grandes de los valores de longitud y altura de (1) Metadata Block Size (2) VORBIS Comment String Size, (3) Picture Metadata MIME-TYPE Size, (4) Picture Description Size, (5) Picture Data Length, (6) Padding Length, y (7) PICTURE Metadata, especificados en un fichero .FLAC, que tiene como resultado un desbordamiento basado en la pila de memoria dinámica (heap); los valores grandes de (8) VORBIS Comment String Size Length, (9) Picture MIME-Type, (10) Picture MIME-Type URL, y (11) Picture Description Length, también especificados en un fichero .FLAC, provocan un desbordamiento basado en la pila (stack). NOTA: alguna de estos problemas podría coincidir con el CVE-2007-4619. • http://research.eeye.com/html/advisories/published/AD20071115.html http://secunia.com/advisories/28548 http://securityreason.com/securityalert/3423 http://www.debian.org/security/2008/dsa-1469 http://www.kb.cert.org/vuls/id/544656 http://www.securityfocus.com/archive/1/483765/100/200/threaded http://www.securitytracker.com/id?1018974 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10435 https://access.redhat.com/security/cve/CVE-2007-6277 https • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 9.3EPSS: 9%CPEs: 1EXPL: 0

CVE-2007-6279

https://notcve.org/view.php?id=CVE-2007-6279

Multiple double free vulnerabilities in Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via malformed (1) Seektable values or (2) Seektable Data Offsets in a .FLAC file. Múltiples vulnerabilidades de doble liberación en Free Lossless Audio Codec en LibFLAC (FLAC) versiones anteriores a 1.2.1, permiten a los atacantes remotos asistidos por el usuario ejecutar código arbitrario por medio de (1) valores de Seektable o (2) Desplazamientos de Datos de Seektable malformados en un archivo .FLAC. • http://research.eeye.com/html/advisories/published/AD20071115.html http://securityreason.com/securityalert/3423 http://www.kb.cert.org/vuls/id/544656 http://www.securityfocus.com/archive/1/483765/100/200/threaded http://www.securitytracker.com/id?1018974 • CWE-399: Resource Management Errors •

CVSS: 9.3EPSS: 44%CPEs: 2EXPL: 0

CVE-2007-4619 – FLAC Integer overflows

https://notcve.org/view.php?id=CVE-2007-4619

Multiple integer overflows in Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code via a malformed FLAC file that triggers improper memory allocation, resulting in a heap-based buffer overflow. Múltiples desbordamientos de entero en Free Lossless Audio Codec (FLAC) libFLAC versiones anteriores a 1.2.1, como se usan Winamp versiones anteriores a 5.5 y otros productos, permiten a atacantes remotos con la complicidad del usuario ejecutar código de su elección mediante un fichero FLAC malformado que dispara una ubicación de memoria inapropiada, resultando en un desbordamiento de búfer basado en montículo. • http://bugzilla.redhat.com/show_bug.cgi?id=331991 http://flac.sourceforge.net/changelog.html#flac_1_2_1 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=608 http://lists.opensuse.org/opensuse-security-announce/2007-10/msg00008.html http://secunia.com/advisories/27210 http://secunia.com/advisories/27223 http://secunia.com/advisories/27355 http://secunia.com/advisories/27399 http://secunia.com/advisories/27507 http://secunia.com/advisories/27601 http://secunia. • CWE-189: Numeric Errors CWE-190: Integer Overflow or Wraparound •

1 2