libvorbis -- multiple vulnerabilities

ID 94EDFF42-D93D-11DE-A434-0211D880E350
Type freebsd
Reporter FreeBSD
Modified 2009-11-24T00:00:00


The Ubuntu security team reports:

It was discovered that libvorbis did not correctly handle certain malformed vorbis files. If a user were tricked into opening a specially crafted vorbis file with an application that uses libvorbis, an attacker could cause a denial of service or possibly execute arbitrary code with the user's privileges.