OESA-2022-1611

See a problem?
Please try reporting it to the source first.
Source
https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-1611
Import Source
https://repo.openeuler.org/security/data/osv/OESA-2022-1611.json
JSON Data
https://api.test.osv.dev/v1/vulns/OESA-2022-1611
Upstream
Published
2022-04-12T11:03:41Z
Modified
2025-08-12T05:06:52.107710Z
Summary
flac security update
Details

FLAC stands for Free Lossless Audio Codec, an audio format similar to MP3, but lossless, meaning that audio is compressed in FLAC without any loss in quality.

Security Fix(es):

In appendtoverifyfifointerleaved_ of stream_encoder.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-174302683(CVE-2021-0561)

Database specific 
{
    "severity": "Medium"
}
References

Affected packages

openEuler:20.03-LTS-SP1 / flac

Package

Name
flac
Purl
pkg:rpm/openEuler/flac&distro=openEuler-20.03-LTS-SP1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.3.3-5.oe1

Ecosystem specific 

{
    "x86_64": [
        "flac-help-1.3.3-5.oe1.x86_64.rpm",
        "flac-devel-1.3.3-5.oe1.x86_64.rpm",
        "flac-debugsource-1.3.3-5.oe1.x86_64.rpm",
        "flac-debuginfo-1.3.3-5.oe1.x86_64.rpm",
        "xmms-flac-1.3.3-5.oe1.x86_64.rpm",
        "flac-1.3.3-5.oe1.x86_64.rpm"
    ],
    "aarch64": [
        "flac-1.3.3-5.oe1.aarch64.rpm",
        "flac-devel-1.3.3-5.oe1.aarch64.rpm",
        "flac-debugsource-1.3.3-5.oe1.aarch64.rpm",
        "flac-debuginfo-1.3.3-5.oe1.aarch64.rpm",
        "xmms-flac-1.3.3-5.oe1.aarch64.rpm",
        "flac-help-1.3.3-5.oe1.aarch64.rpm"
    ],
    "src": [
        "flac-1.3.3-5.oe1.src.rpm"
    ]
}

openEuler:20.03-LTS-SP2 / flac

Package

Name
flac
Purl
pkg:rpm/openEuler/flac&distro=openEuler-20.03-LTS-SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.3.3-5.oe1

Ecosystem specific 

{
    "x86_64": [
        "flac-help-1.3.3-5.oe1.x86_64.rpm",
        "flac-devel-1.3.3-5.oe1.x86_64.rpm",
        "flac-debugsource-1.3.3-5.oe1.x86_64.rpm",
        "flac-debuginfo-1.3.3-5.oe1.x86_64.rpm",
        "xmms-flac-1.3.3-5.oe1.x86_64.rpm",
        "flac-1.3.3-5.oe1.x86_64.rpm"
    ],
    "aarch64": [
        "flac-1.3.3-5.oe1.aarch64.rpm",
        "flac-devel-1.3.3-5.oe1.aarch64.rpm",
        "flac-debugsource-1.3.3-5.oe1.aarch64.rpm",
        "flac-debuginfo-1.3.3-5.oe1.aarch64.rpm",
        "xmms-flac-1.3.3-5.oe1.aarch64.rpm",
        "flac-help-1.3.3-5.oe1.aarch64.rpm"
    ],
    "src": [
        "flac-1.3.3-5.oe1.src.rpm"
    ]
}

openEuler:20.03-LTS-SP3 / flac

Package

Name
flac
Purl
pkg:rpm/openEuler/flac&distro=openEuler-20.03-LTS-SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.3.3-5.oe1

Ecosystem specific 

{
    "x86_64": [
        "flac-help-1.3.3-5.oe1.x86_64.rpm",
        "flac-devel-1.3.3-5.oe1.x86_64.rpm",
        "flac-debugsource-1.3.3-5.oe1.x86_64.rpm",
        "flac-debuginfo-1.3.3-5.oe1.x86_64.rpm",
        "xmms-flac-1.3.3-5.oe1.x86_64.rpm",
        "flac-1.3.3-5.oe1.x86_64.rpm"
    ],
    "aarch64": [
        "flac-1.3.3-5.oe1.aarch64.rpm",
        "flac-devel-1.3.3-5.oe1.aarch64.rpm",
        "flac-debugsource-1.3.3-5.oe1.aarch64.rpm",
        "flac-debuginfo-1.3.3-5.oe1.aarch64.rpm",
        "xmms-flac-1.3.3-5.oe1.aarch64.rpm",
        "flac-help-1.3.3-5.oe1.aarch64.rpm"
    ],
    "src": [
        "flac-1.3.3-5.oe1.src.rpm"
    ]
}