suse · CVE-2014-8962

Quick triage

Priority: high Published: 2021-05-30 13:24:24 UTC Updated: 2026-04-18 18:32:22 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2014-8962 severity important: SUSE including 290 source package names (amazon/suse-sles-15-sp1-chost-byos-v20210304-hvm-ssd-x86_64, amazon/suse-sles-15-sp1-chost-byos-v20220127-hvm-ssd-x86_64, …), 393 product×package rows across 63 product lines (SUSE CaaS Platform 4.0, SUSE Enterprise Storage 6, … (63 product lines)): Known Affected 231, Fixed 132, Known Not Affected 30.

Description:

Stack-based buffer overflow in stream_decoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file.

cvelogic Threat Intelligence