CVE-2009-4632

Priority
Low
Description
oggparsevorbis.c in FFmpeg 0.5 does not properly perform certain pointer
arithmetic, which might allow remote attackers to obtain sensitive memory
contents and cause a denial of service via a crafted file that triggers an
out-of-bounds read.
References
Bugs
Notes
 mdeslaur> this is issue #18
 mdeslaur> Can't reproduce on hardy, patch doesn't seem to apply
Package
Upstream:needed
Package
Upstream:needed
More Information

Valid XHTML 1.0 Strict

Updated: 2015-07-29 20:37:25 UTC (commit 9756)