Buffer Overflow vulnerability in function bitwriter_grow_ in flac before 1.4.0 allows remote attackers to run arbitrary code via crafted input to the encoder.
https://www.debian.org/security/2023/dsa-5500
https://lists.debian.org/debian-lts-announce/2023/09/msg00028.html