flac-1.3.2-9.el8.1
エラータID: AXSA:2023-6402:03
FLAC stands for Free Lossless Audio Codec. FLAC is similar to Ogg Vorbis, but lossless. The FLAC project consists of the stream format, reference encoders and decoders in library form, a command-line program to encode and decode FLAC files, and a command-line metadata editor for FLAC files.
Security Fix(es):
* flac: Remote Code Execution (RCE) via the bitwriter_grow_ function, by supplying crafted input to the encoder (CVE-2020-22219)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2020-22219
Buffer Overflow vulnerability in function bitwriter_grow_ in flac before 1.4.0 allows remote attackers to run arbitrary code via crafted input to the encoder.
Update packages.
Buffer Overflow vulnerability in function bitwriter_grow_ in flac before 1.4.0 allows remote attackers to run arbitrary code via crafted input to the encoder.
N/A
SRPMS
- flac-1.3.2-9.el8.1.src.rpm
MD5: 11d585e1c2506cd05f4b66f2fa0e3711
SHA-256: 46839bf6a8330e45a7a3e55133022255abb4b54a17497f8acaeae36216481a04
Size: 780.29 kB
Asianux Server 8 for x86_64
- flac-1.3.2-9.el8.1.x86_64.rpm
MD5: a92a097b854dcd77b52f92167884baa8
SHA-256: d4793fea4d532daeba7e2a2713741139a13fd9221261a502e3ac27cfc431b793
Size: 226.08 kB - flac-devel-1.3.2-9.el8.1.i686.rpm
MD5: f128b104da8016b51e4475158582ecb7
SHA-256: 314f3817edc828f02892e6a1024e3cc822458f7e9b58d26344796b1fb73fce3f
Size: 389.13 kB - flac-devel-1.3.2-9.el8.1.x86_64.rpm
MD5: 7a4617d93208c741db9adfe70792ee8c
SHA-256: f8364c601fb01e40fceb01e36b00b11915a4ee7a00539bebe7658cd1249f28d5
Size: 389.11 kB - flac-libs-1.3.2-9.el8.1.i686.rpm
MD5: f7dbbaeea437bc64785c3e272d1ab7b6
SHA-256: ce897d849c8f5262cb5b2a61b35bc8a47c19233115c06cd29d61159e261262e1
Size: 218.36 kB - flac-libs-1.3.2-9.el8.1.x86_64.rpm
MD5: 7da6d7153bd574cc93e562d5dcd77dc4
SHA-256: 40e3d77ea1d766c7a1f48898f2867ba3e8b9c4d304b5f41af2ebc0ee6e4ac870
Size: 216.37 kB
日本語