CVE-2025-14369

Name of the Vulnerable Software and Affected Versions dr flac (affected versions not specified)

Description The dr flac audio decoder, part of the dr libs toolset, has a flaw where it improperly handles the totalPCMFrameCount field within FLAC metadata. This can lead to an integer overflow when calculating buffer size. An attacker could leverage this with a specially crafted file to cause a denial-of-service (DoS) condition in programs using the tool.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.