CVE-2009-4632

Priority
Low
Description
oggparsevorbis.c in FFmpeg 0.5 does not properly perform certain pointer
arithmetic, which might allow remote attackers to obtain sensitive memory
contents and cause a denial of service via a crafted file that triggers an
out-of-bounds read.
References
Bugs
Notes
 mdeslaur> this is issue #18
 mdeslaur> Can't reproduce on hardy, patch doesn't seem to apply
Package
Upstream:needed
Package
Upstream:needed
More Information

Updated: 2016-03-23 03:35:24 UTC (commit 10817)