flac security fix
|Reported by:||Owned by:|
Description (last modified by )
In FLACbitreader_read_rice_signed_block of bitreader.c,
there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.
Fixed upstream but no new release.