CVE-2007-4974
Published: 19 September 2007
Heap-based buffer overflow in the flac_buffer_copy function in libsndfile 1.0.17 and earlier might allow remote attackers to execute arbitrary code via a FLAC file with crafted PCM data containing a block with a size that exceeds the previous block size.
Notes
Author | Note |
---|---|
jdstrand | fix in MDKSA-2007:191 |
Priority
Status
Package | Release | Status |
---|---|---|
libsndfile Launchpad, Ubuntu, Debian |
upstream |
Released
(1.0.18)
|
dapper |
Released
(1.0.12-3ubuntu0.1)
|
|
edgy |
Released
(1.0.16-1ubuntu0.6.10.1)
|
|
feisty |
Released
(1.0.16-1ubuntu0.7.04.1)
|