CVE-2014-8962

EPSS 14.7%

flac - security update

發布日:2014/11/26修改日:2026/4/28

描述

Stack-based buffer overflow in stream_decoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file.

受影響套件(3)

Debian/flacfrom 0, < 1.3.0-3
Debian/flacfrom 0, < 1.2.1-2+deb6u1
Debian/flacfrom 0, < 1.2.1-6+deb7u1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-8962