Flac Project ≫ Flac

2 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

7.8

CVE-2020-22219

Exploit

EPSS 0.38%
Published 22.08.2023 19:16:19
Last modified 21.11.2024 05:13:11

Buffer Overflow vulnerability in function bitwriter_grow_ in flac before 1.4.0 allows remote attackers to run arbitrary code via crafted input to the encoder.

5.5

CVE-2017-6888

EPSS 0.09%
Published 25.04.2018 21:29:00
Last modified 21.11.2024 03:30:43

An error in the "read_metadata_vorbiscomment_()" function (src/libFLAC/stream_decoder.c) in FLAC version 1.3.2 can be exploited to cause a memory leak via a specially crafted FLAC file.