CVE-2009-0586 (retired)

Integer overflow in the gst_vorbis_tag_add_coverart function
(gst-libs/gst/tag/gstvorbistag.c) in vorbistag in gst-plugins-base (aka
gstreamer-plugins-base) before 0.10.23 in GStreamer allows
context-dependent attackers to execute arbitrary code via a crafted
COVERART tag that is converted from a base64 representation, which triggers
a heap-based buffer overflow.
More Information

Updated: 2019-03-26 11:47:12 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)