Information on source package flac

Available versions

ReleaseVersion
jessie1.3.0-3+deb8u3
stretch1.3.2-2+deb9u3
stretch (security)1.3.2-2+deb9u2
buster1.3.2-3+deb10u2
buster (security)1.3.2-3+deb10u3
bullseye1.3.3-2+deb11u2
bookworm1.4.2+ds-2
trixie1.4.3+ds-2
sid1.4.3+ds-2.1

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2017-6888vulnerable (no DSA)fixedfixedfixedfixedfixedfixedAn error in the "read_metadata_vorbiscomment_()" function (src/libFLAC ...

Resolved issues

BugDescription
CVE-2021-0561In append_to_verify_fifo_interleaved_ of stream_encoder.c, there is a ...
CVE-2020-22219Buffer Overflow vulnerability in function bitwriter_grow_ in flac befo ...
CVE-2020-0499In FLAC__bitreader_read_rice_signed_block of bitreader.c, there is a p ...
CVE-2014-9028Heap-based buffer overflow in stream_decoder.c in libFLAC before 1.3.1 ...
CVE-2014-8962Stack-based buffer overflow in stream_decoder.c in libFLAC before 1.3. ...
CVE-2007-6279Multiple double free vulnerabilities in Free Lossless Audio Codec (FLA ...
CVE-2007-6278Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1 allows user-assi ...
CVE-2007-6277Multiple buffer overflows in Free Lossless Audio Codec (FLAC) libFLAC ...
CVE-2007-4619Multiple integer overflows in Free Lossless Audio Codec (FLAC) libFLAC ...

Security announcements

DSA / DLADescription
DLA-3581-1flac - security update
ELA-954-1flac - security update
DSA-5500-1flac - security update
DLA-3094-1flac - security update
DLA-2951-1flac - security update
ELA-578-1flac - security update
DLA-2514-1flac - security update
ELA-335-1flac - security update
DLA-99-1flac - security update
DSA-3082-1flac - security update
DSA-1469-1flac

Search for package or bug name: Reporting problems