CVE-2007-4619

Publication date 12 October 2007

Last updated 24 July 2024


Ubuntu priority

Multiple integer overflows in Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code via a malformed FLAC file that triggers improper memory allocation, resulting in a heap-based buffer overflow.

Read the notes from the security team

Status

Package Ubuntu Release Status
flac 7.10 gutsy
Fixed 1.1.4-3ubuntu1.1
7.04 feisty
Fixed 1.1.2-5ubuntu2.1
6.10 edgy
Fixed 1.1.2-5ubuntu1.1
6.06 LTS dapper
Fixed 1.1.2-3ubuntu1.1
xine-lib 7.10 gutsy
Not affected
7.04 feisty
Not affected
6.10 edgy
Not affected
6.06 LTS dapper
Not affected

Notes


jdstrand

fixed in RedHat flac-1.1.2-28.el5_0.1.src.rpm preliminary analysis shows that xine-lib is probably not affected (only 1 call to realloc and 4 calls to xine_xmalloc). The code is quite different, so need to dive in more. requested reproducer on vendor-sec (they said no, but there is a good test suite) Debian 1.2.1-1 in unstable is not affected

References

Related Ubuntu Security Notices (USN)

    • USN-540-1
    • flac vulnerability
    • 13 November 2007

Other references