CVE-2007-4974

Heap-based buffer overflow in the flac_buffer_copy function in libsndfile 1.0.17 and earlier might allow remote attackers to execute arbitrary code via a FLAC file with crafted PCM data containing a block with a size that exceeds the previous block size.

🔗 References (34)

• cve@mitrehttp://lists.opensuse.org/opensuse-security-announce/2008-01/msg00002.html
• cve@mitrehttp://secunia.com/advisories/26921
• cve@mitrehttp://secunia.com/advisories/26932
• cve@mitrehttp://secunia.com/advisories/27018
• cve@mitrehttp://secunia.com/advisories/27071
• cve@mitrehttp://secunia.com/advisories/27100
• cve@mitrehttp://secunia.com/advisories/28265
• cve@mitrehttp://secunia.com/advisories/28412
• cve@mitrehttp://security.gentoo.org/glsa/glsa-200710-04.xml
• cve@mitrehttp://www.debian.org/security/2007/dsa-1442
• cve@mitrehttp://www.mandriva.com/security/advisories?name=MDKSA-2007:191
• cve@mitrehttp://www.securityfocus.com/bid/25758
• cve@mitrehttp://www.ubuntu.com/usn/usn-525-1
• cve@mitrehttp://www.vupen.com/english/advisories/2007/3241
• cve@mitrehttps://bugs.gentoo.org/show_bug.cgi?id=192834