Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
certCERTVU:544656
HistoryNov 15, 2007 - 12:00 a.m.

libFLAC contains multiple vulnerabilities

2007-11-1500:00:00
www.kb.cert.org
19

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.467

Percentile

97.5%

JSON

Overview

libFLAC contains multiple vulnerabilities, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.

Description

FLAC (Free Lossless Audio Codec) is a lossless audio format. libFLAC is a library that can process FLAC files. libFLAC contains multiple vulnerabilities, including:

* Metadata Block Size Heap Overflow
* VORBIS Comment String Size Field Heap Overflow
* VORBIS Comment String Size Length Stack Overflow
* Picture MIME-Type Size Heap Overflow
* Picture MIME-Type Size Stack Overflow
* Picture Dimension Size Heap Overflow
* Picture Description Size Heap Overflow
* Picture Description Length Stack Overflow
* Picture Data Length Heap Overflow
* Picture URL Stack Overflow
* Malformed Image/File Download Vulnerability
* Padding Length Heap Overflow
* Seektable Out-Of-Scope Double Free Condition
* Malformed Seektable Double Free Condition

Please see eEye advisory AD20071115 for more details.

Impact

By convincing a user to open a specially crafted FLAC file, a remote, unauthenticated attacker may be able to execute arbitrary code or cause a denial-of-service condition on a vulnerable system.

Solution

Apply an update
These issues are addressed in version 1.2.1 of the FLAC library. Please see the Systems Affected section for fix availability for specific products.

Vendor Information

544656

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Additional information available

__ Sort by: Status Alphabetical

Expand all

Javascript is disabled. Click here to view vendors.

America Online, Inc. __ Affected

Notified: October 12, 2007 Updated: November 15, 2007

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

This issue is addressed in Winamp 5.5.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23544656 Feedback>).

Cog __ Affected

Notified: October 12, 2007 Updated: November 15, 2007

Status

Affected

Vendor Statement

I'll be updating the flac framework included with Cog shortly and that will be included with the future 0.07 release. As a workaround for 0.06, current users can disable the Flac plugin by right clicking on the Cog.app package, going to "Get Info", and unchecking the "Flac.bundle" plug-in.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

FLAC __ Affected

Notified: September 27, 2007 Updated: November 15, 2007

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

These issues are addressed in FLAC 1.2.1.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23544656 Feedback>).

Foobar2000 Affected

Notified: October 12, 2007 Updated: November 15, 2007

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

PhatBox Affected

Notified: October 12, 2007 Updated: November 15, 2007

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Yahoo, Inc. Affected

Notified: October 12, 2007 Updated: November 15, 2007

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

dBpoweramp __ Affected

Notified: October 12, 2007 Updated: November 15, 2007

Status

Affected

Vendor Statement

We have fixed this in R11 of our FLAC codec, which is currently in beta test.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

jetAudio Affected

Notified: October 12, 2007 Updated: November 15, 2007

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

CVSS Metrics

Group Score Vector
Base
Temporal
Environmental

References

Acknowledgements

This vulnerability was reported by Andre Protas of eEye Digital Security, who in turn credit Greg Linares.

This document was written by Will Dormann.

Other Information

CVE IDs: CVE-2007-4619
Severity Metric: 5.06 Date Public:

Related

nessus 15
securityvulns 1
prion 2
openvas 19
cvelist 2
ubuntu 1
cve 2
checkpoint_advisories 1
gentoo 1
fedora 2
ubuntucve 4
debiancve 2
freebsd 1
nvd 2
oraclelinux 1
debian 1
centos 1
redhat 1
nessus
nessus
SuSE9 Security Update : flac (YOU Patch Number 11926)
2009-09-24 00:00:00
FreeBSD : flac -- media file processing integer overflow vulnerabilities (ff65eecb-91e4-11dc-bd6c-0016179b2dd5)
2007-11-14 00:00:00
Fedora Core 6 : flac-1.1.2-28 (2007-730)
2007-11-06 00:00:00
securityvulns
securityvulns
iDefense Security Advisory 10.11.07: Multiple Vendor FLAC Library Multiple Integer Overflow Vulnerabilities
2007-10-13 00:00:00
prion
prion
Integer overflow
2007-10-12 21:17:00
Heap overflow
2007-12-07 11:46:00
openvas
openvas
FreeBSD Ports: flac
2008-09-04 00:00:00
Ubuntu Update for flac vulnerability USN-540-1
2009-03-23 00:00:00
Gentoo Security Advisory GLSA 200711-15 (flac)
2008-09-24 00:00:00
cvelist
cvelist
CVE-2007-4619
2007-10-12 21:00:00
CVE-2007-6277
2007-12-07 11:00:00
ubuntu
ubuntu
flac vulnerability
2007-11-13 00:00:00
cve
cve
CVE-2007-4619
2007-10-12 21:17:00
CVE-2007-6277
2007-12-07 11:46:00
checkpoint_advisories
checkpoint_advisories
FLAC libFLAC Multiple Buffer Overflows (CVE-2007-4619)
2007-11-22 00:00:00
gentoo
gentoo
FLAC: Buffer overflow
2007-11-12 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: flac-1.1.2-28
2007-11-05 14:24:30
[SECURITY] Fedora 7 Update: flac-1.2.1-1.fc7
2007-11-01 21:22:33
ubuntucve
ubuntucve
CVE-2007-4619
2007-10-12 00:00:00
CVE-2007-6277
2007-12-07 00:00:00
CVE-2007-6278
2007-12-07 00:00:00
debiancve
debiancve
CVE-2007-4619
2007-10-12 21:17:00
CVE-2007-6277
2007-12-07 11:46:00
freebsd
freebsd
flac -- media file processing integer overflow vulnerabilities
2007-10-11 00:00:00
nvd
nvd
CVE-2007-4619
2007-10-12 21:17:00
CVE-2007-6277
2007-12-07 11:46:00
oraclelinux
oraclelinux
Important: flac security update
2007-10-22 00:00:00
debian
debian
[SECURITY] [DSA 1469-1] New flac packages fix arbitrary code execution
2008-01-20 15:43:22
centos
centos
flac, xmms security update
2007-10-22 19:52:23
redhat
redhat
(RHSA-2007:0975) Important: flac security update
2007-10-22 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.467

Percentile

97.5%

JSON
Related for VU:544656
nessus15securityvulns1prion2openvas19cvelist2ubuntu1cve2checkpoint_advisories1gentoo1fedora2ubuntucve4debiancve2freebsd1nvd2oraclelinux1debian1centos1redhat1