CVE-2012-2107

Integer overflow in the main function in util/lpcimain.c in Csound before 5.17.2, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted file, which triggers a heap-based buffer overflow...

CVE-2012-2107

Csound prior to 5.17.2 suffers an integer overflow in util/lpci_main.c during file conversion, triggering a heap-based buffer overflow that could allow remote code execution. This is documented across multiple sources (SUSE/OpenSUSE, Ubuntu, Debian osv, etc.). Affected version: Csound