Slashdot Mirror

← Back to Stories (view on slashdot.org)

Multiple FLAC Vulnerabilities Affect Every OS

Posted by kdawson on from the don't-hit-play dept.

Enon writes "eEye Digital Security has discovered 14 vulnerabilities in the FLAC file format that affect a huge range of media players on every supported operating system (Windows, Mac OS, Linux, Unix, BSD, Solaris, and even some hardware players are vulnerable). Heise points out a number of vulnerable apps that use the open source libavcodec audio codec library, which in turn relies on the flawed libFLAC library. These vulnerabilities could allow a person of ill will to trojanize FLAC files that could compromise your computer if they are played on a vulnerable media player. eEye worked with US-CERT to notify vulnerable vendors."

1 of 360 comments (clear)

  1. Re:Time to write libraries like these in OCaml. by bmo · · Score: 1, Troll

    Just because I have karma to burn and I don't care...

    Performant is not a word.

    Efficient is a word.

    Making up jargon to sound erudite actually makes you sound stupid.

    Thank you and have a nice day.

    --
    BMO