Oval Definition:	oval:org.mitre.oval:def:7768
Revision Date: 2014-06-23 Version: 19 Title: DSA-1469 flac -- several vulnerabilities Description: Sean de Regge and Greg Linares discovered multiple heap and stack based buffer overflows in FLAC, the Free Lossless Audio Codec, which could lead to the execution of arbitrary code. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2007-4619 CVE-2007-6277 DSA-1469 Platform(s): Debian GNU/Linux 3.1 Debian GNU/Linux 4.0 Product(s): flac Definition Synopsis Release section Debian GNU/Linux 4.0 is installed. AND Architecture section Architecture independent section Installed architecture is all AND libflac-doc is earlier than 1.1.2-8 OR liboggflac-dev is earlier than 1.1.2-8 OR libflac-dev is earlier than 1.1.2-8 OR liboggflac3 is earlier than 1.1.2-8 OR libflac++-dev is earlier than 1.1.2-8 OR libflac7 is earlier than 1.1.2-8 OR libflac++5 is earlier than 1.1.2-8 OR xmms-flac is earlier than 1.1.2-8 OR flac is earlier than 1.1.2-8 OR liboggflac++-dev is earlier than 1.1.2-8 OR liboggflac++2 is earlier than 1.1.2-8 OR Release section Debian GNU/Linux 3.1 is installed AND Supported architectures section Installed architecture is s390 OR Installed architecture is amd64 OR Installed architecture is sparc OR Installed architecture is arm OR Installed architecture is i386 OR Installed architecture is mips OR Installed architecture is ia64 OR Installed architecture is alpha OR Installed architecture is powerpc OR Installed architecture is mipsel OR Installed architecture is hppa AND Packages section liboggflac-dev is earlier than 1.1.1-5sarge1 OR libflac-dev is earlier than 1.1.1-5sarge1 OR libflac++-dev is earlier than 1.1.1-5sarge1 OR liboggflac++0c102 is earlier than 1.1.1-5sarge1 OR liboggflac1 is earlier than 1.1.1-5sarge1 OR libflac6 is earlier than 1.1.1-5sarge1 OR libflac++4 is earlier than 1.1.1-5sarge1 OR flac is earlier than 1.1.1-5sarge1 OR liboggflac++-dev is earlier than 1.1.1-5sarge1 OR xmms-flac is earlier than 1.1.1-5sarge1
BACK