Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

Fedora 25: 2017-e7f9c23746 Moderate: Flac Buffer Overflow

fedora
Calendar Grey January 6, 2017
Dist Fedora Esm H88
Keep abreast of the newest FLAC security enhancements in Fedora 25 to guarantee peak performance and protection.
Update to the latest upstream release

Summary

FLAC stands for Free Lossless Audio Codec. Grossly oversimplified, FLAC

is similar to Ogg Vorbis, but lossless. The FLAC project consists of

the stream format, reference encoders and decoders in library form,

flac, a command-line program to encode and decode FLAC files, metaflac,

a command-line metadata editor for FLAC files and input plugins for

various music players.

This package contains the command-line tools and documentation.

Update Information:

Update to the latest upstream release

Change Log

References


[ 1 ] Bug #1193442 - flac: BSS buffer overflow in flac__encode_file() https://bugzilla.redhat.com/show_bug.cgi?id=1193442 [ 2 ] Bug #1193439 - flac: NULL pointer dereference and integer underflow in EncoderSession_init_encoder() https://bugzilla.redhat.com/show_bug.cgi?id=1193439 [ 3 ] Bug #1193437 - flac: NULL pointer dereference in FLAC__stream_encoder_process() https://bugzilla.redhat.com/show_bug.cgi?id=1193437

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade flac' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Name: flac
Product: Fedora 25
Version: 1.3.2
Release: 1.fc25
Summary: An encoder/decoder for the Free Lossless Audio Codec

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.