CVE-2007-6279

Name of the Vulnerable Software and Affected Versions Free Lossless Audio Codec (FLAC) libFLAC versions prior to 1.2.1

Description The issue concerns multiple double free vulnerabilities in the Free Lossless Audio Codec (FLAC) libFLAC. These vulnerabilities can be exploited by user-assisted remote attackers via malformed Seektable values or Seektable Data Offsets in a .FLAC file, potentially allowing the execution of arbitrary code.

Recommendations For versions prior to 1.2.1, update to version 1.2.1 or later to resolve the issue. As a temporary workaround, consider avoiding the use of .FLAC files from untrusted sources until the update is applied.