UbuntuUpdates.org

Package "libflac-dev"

Name: libflac-dev

Description:

Free Lossless Audio Codec - C development library

Latest version: 1.2.1-6ubuntu0.1
Release: precise (12.04)
Level: updates
Repository: main
Head package: flac
Homepage: http://flac.sourceforge.net/

Links


Download "libflac-dev"


Other versions of "libflac-dev" in Precise

Repository Area Version
base main 1.2.1-6
security main 1.2.1-6ubuntu0.1
PPA: nathan-renniewaldock ppa 1.2.1-7~ppa1~precise

Changelog

Version: 1.2.1-6ubuntu0.1 2014-11-27 21:06:26 UTC

  flac (1.2.1-6ubuntu0.1) precise-security; urgency=medium

  * SECURITY UPDATE: arbitrary code execution via crafted .flac file
    - debian/patches/CVE-2014-8962.patch: validate id in
      src/libFLAC/stream_decoder.c.
    - CVE-2014-8962
  * SECURITY UPDATE: arbitrary code execution via crafted .flac file
    - debian/patches/CVE-2014-9028.patch: error out to avoid heap overflow
      in src/libFLAC/stream_decoder.c.
    - CVE-2014-9028
 -- Marc Deslauriers <email address hidden> Thu, 27 Nov 2014 12:27:24 -0500

CVE-2014-8962 Heap buffer read overflow
CVE-2014-9028 Heap buffer write overflow



About   -   Send Feedback to @ubuntu_updates