CVE-2009-4632

Priority
Description
oggparsevorbis.c in FFmpeg 0.5 does not properly perform certain pointer
arithmetic, which might allow remote attackers to obtain sensitive memory
contents and cause a denial of service via a crafted file that triggers an
out-of-bounds read.
Notes
 mdeslaur> this is issue #18
 mdeslaur> Can't reproduce on hardy, patch doesn't seem to apply
Package
Upstream:needed
Package
Upstream:needed
More Information

Updated: 2019-03-19 11:51:46 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)