SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2023-3635

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2023-3635

Security update for flac

Type: security

Severity: moderate

Issued: 2023-09-18

Description:

This update for flac fixes the following issues:

- CVE-2020-22219: Fixed a buffer overflow in function bitwriter_grow_ which might allow a remote attacker to run arbitrary code via crafted input to the encoder. (bsc#1214615)

References

CVE: CVE-2020-22219
Bugzilla: 1214615 VUL-0: CVE-2020-22219: flac: Buffer Overflow vulnerability in function bitwriter_grow_ in flac before 1.4.0 allows remote attackers to run arbitrary code via crafted input to the encoder.

Packages

flac-1.3.2-150000.3.14.1