CVE-2009-4634

Priority
Description
Multiple integer underflows in FFmpeg 0.5 allow remote attackers to cause a
denial of service and possibly execute arbitrary code via a crafted file
that (1) bypasses a validation check in vorbis_dec.c and triggers a
wraparound of the stack pointer, or (2) access a pointer from out-of-bounds
memory in mov.c, related to an elst tag that appears before a tag that
creates a stream.
Notes
 mdeslaur> This is issues #9 and #3
Package
Upstream:needed
Package
Upstream:needed
More Information

Updated: 2019-03-19 11:51:46 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)