From release notes (https://xiph.org/flac/changelog.html):
"This release mostly fixes (security related) bugs. When building with MSVC, using CMake is preferred, see the README under "Building with CMake" for more information. Building with MSVC using solution files is deprecated and these files will be removed in the future.
Fix 12 decoder bugs found by oss-fuzz, including CVE-2020-0499 (erikd, Martijn van Beurden)
Fix encoder bug CVE-2021-0561 (NeelkamalSemwal)
Please stable when ready.
The bug has been referenced in the following commit(s):
Author: Miroslav Šulc <email@example.com>
AuthorDate: 2022-02-26 07:43:27 +0000
Commit: Miroslav Šulc <firstname.lastname@example.org>
CommitDate: 2022-02-26 07:43:27 +0000
media-libs/flac: removed vulnerable 1.3.3-r1
Package-Manager: Portage-3.0.30, Repoman-3.0.3
Signed-off-by: Miroslav Šulc <email@example.com>
media-libs/flac/Manifest | 1 -
...ac-1.3.3-fix-zero-first-byte-md5sum-check.patch | 13 -----
media-libs/flac/flac-1.3.3-r1.ebuild | 59 ----------------------
3 files changed, 73 deletions(-)
the tree is clean now, you can proceed.