Debian DSA-1469-1 : flac - several vulnerabilities
High Nessus Plugin ID 30061
SynopsisThe remote Debian host is missing a security-related update.
DescriptionSean de Regge and Greg Linares discovered multiple heap and stack based buffer overflows in FLAC, the Free Lossless Audio Codec, which could lead to the execution of arbitrary code.
SolutionUpgrade the flac packages.
For the old stable distribution (sarge), these problems have been fixed in version 1.1.1-5sarge1.
For the stable distribution (etch), these problems have been fixed in version 1.1.2-8.