Rockbox.org home
Downloads
Release release
Dev builds dev builds
Extras extras
themes themes
Documentation
Manual manual
Wiki wiki
Device Status device status
Support
Forums forums
Mailing lists mailing lists
IRC IRC
Development
Bugs bugs
Patches patches
Dev Guide dev guide
Search



Donate

+  Rockbox Technical Forums
|-+  Rockbox General
| |-+  Rockbox General Discussion
| | |-+  FLAC vulnerabilities
« previous next »
Pages: [1]

Author Topic: FLAC vulnerabilities  (Read 1335 times)

Offline riksweeney

  • Member
  • *
  • Posts: 74
    • Parallel Realities
FLAC vulnerabilities
« on: November 20, 2007, 03:15:01 AM »
Slashdot is reporting that multiple FLAC vulnerabilities are affecting players using libavcodec, even hardware players. Hopefully this will get sorted out before someone hacks Rockbox and uses it to steal everyone's credit card information and murder their dogs.

;)
Logged

Offline Bagder

  • Member
  • *
  • Posts: 1452
    • Daniel's site
Re: FLAC vulnerabilities
« Reply #1 on: November 20, 2007, 03:33:23 AM »
Actually, the report (http://research.eeye.com/html/advisories/published/AD20071115.html) talks about libFLAC and it also mentions in what versions that these problems are already fixed.

However, Rockbox doesn't use libFLAC. The FLAC decoder in Rockbox is from ffmpeg, and the flac and ogg comment parsing code are our own.
Logged
Pages: [1]
« previous next »
+  Rockbox Technical Forums
|-+  Rockbox General
| |-+  Rockbox General Discussion
| | |-+  FLAC vulnerabilities