Debian LTS: DLA-3094-1: flac security update | LinuxSecurity.com

What Are You Looking For?

Popular Tags

Contribute

- -----------------------------------------------------------------------
Debian LTS Advisory DLA-3094-1              [email protected]
https://www.debian.org/lts/security/                      Utkarsh Gupta
September 04, 2022                          https://wiki.debian.org/LTS
- -----------------------------------------------------------------------

Package        : flac
Version        : 1.3.2-3+deb10u2
CVE ID         : CVE-2021-0561
Debian Bug     : 1006339

In append_to_verify_fifo_interleaved_ of stream_encoder.c, there is
a possible out of bounds write due to a missing bounds check. This
could lead to local information disclosure with no additional
execution privileges needed.

For Debian 10 buster, this problem has been fixed in version
1.3.2-3+deb10u2.

We recommend that you upgrade your flac packages.

For the detailed security status of flac please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/flac

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

Debian LTS: DLA-3094-1: flac security update

September 3, 2022
In append_to_verify_fifo_interleaved_ of stream_encoder.c, there is a possible out of bounds write due to a missing bounds check

Summary

For Debian 10 buster, this problem has been fixed in version
1.3.2-3+deb10u2.

We recommend that you upgrade your flac packages.

For the detailed security status of flac please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/flac

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

Severity
Package : flac
Version : 1.3.2-3+deb10u2
CVE ID : CVE-2021-0561
Debian Bug : 1006339

News

Advisories

HOWTOs

Features

Rocky Linux Security Advisories Are Now on LinuxSecurity.com!
Official Guide on Rocky Linux & How to Install It
Business VPNs: Now More Important Than Ever
Linux Log Analysis
Does Linux Need a Firewall & How To Configure the Linux Firewall with firewall-cmd

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy