Debian LTS: DLA-3094-1: flac security update | LinuxSecurity.com

What Are You Looking For?

Popular Tags

Contribute

- -----------------------------------------------------------------------
Debian LTS Advisory DLA-3094-1              [email protected]
https://www.debian.org/lts/security/                      Utkarsh Gupta
September 04, 2022                          https://wiki.debian.org/LTS
- -----------------------------------------------------------------------

Package        : flac
Version        : 1.3.2-3+deb10u2
CVE ID         : CVE-2021-0561
Debian Bug     : 1006339

In append_to_verify_fifo_interleaved_ of stream_encoder.c, there is
a possible out of bounds write due to a missing bounds check. This
could lead to local information disclosure with no additional
execution privileges needed.

For Debian 10 buster, this problem has been fixed in version
1.3.2-3+deb10u2.

We recommend that you upgrade your flac packages.

For the detailed security status of flac please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/flac

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

Debian LTS: DLA-3094-1: flac security update

September 3, 2022
In append_to_verify_fifo_interleaved_ of stream_encoder.c, there is a possible out of bounds write due to a missing bounds check

Summary

For Debian 10 buster, this problem has been fixed in version
1.3.2-3+deb10u2.

We recommend that you upgrade your flac packages.

For the detailed security status of flac please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/flac

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS


Severity
Package : flac
Version : 1.3.2-3+deb10u2
CVE ID : CVE-2021-0561
Debian Bug : 1006339

News

Advisories

HOWTOs

Features

History of Malware on Linux and What's Being Done to Stop It
A Complete Guide to Security Automation & Reporting Using Open Source Tools
How to Check if Your Linux System is Infected with a Virus
Security Considerations for Azure Linux & Windows Subsystem for Linux Users
Admins Receive Automated Linux Patch Management & Improved Security with ManageEngine Endpoint Central

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy