Lucene search

K

Veracode Vulnerability DatabaseVERACODE:28790

HistoryDec 21, 2020 - 11:58 p.m.

Information Disclosure

2020-12-2123:58:35

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

13

flac vulnerability remote disclosure heap-based buffer overflow out-of-bounds read

EPSS

0.008

Percentile

81.5%

flac is vulnerable to information disclosure, An out-of-bounds read due to a heap-based buffer overflow in FLAC__bitreader_read_rice_signed_block in bitreader.c leads to remote information disclosure.

References

lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E

lists.debian.org/debian-lts-announce/2021/01/msg00001.html

lists.fedoraproject.org/archives/list/[email protected]/message/33W6XZAAEJYRGU3XYHRO7XSYEA7YACUB/

lists.fedoraproject.org/archives/list/[email protected]/message/KNZYTAU5UWBVXVJ4VHDWPR66ZVDLQZRE/

lists.fedoraproject.org/archives/list/[email protected]/message/VPA5GAEKPXKAHGHHBI4X7AFNI4BMOVG3/

security-tracker.debian.org/tracker/CVE-2020-0499

source.android.com/security/bulletin/pixel/2020-12-01

EPSS

0.008

Percentile

81.5%

Related for VERACODE:28790

debiancve1 nessus24 openvas18 osv5 alpinelinux1 mageia1 cve1 prion1 redhatcve1 fedora3 ubuntucve1 cvelist1 freebsd1 nvd1 suse2 debian1 slackware1 cloudfoundry1 ubuntu1 androidsecurity1