CVE-2011-2696
Integer overflow in libsndfile before 1.0.25 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PARIS Audio Format PAF file that triggers a heap-based buffer overflow...