libvorbis: fixed a heap based buffer overflow (important)

2012-03-01T23:08:28
ID OPENSUSE-SU-2012:0319-1
Type suse
Reporter Suse
Modified 2012-03-01T23:08:28

Description

Specially crafted ogg files could cause a heap-based buffer overflow in the vorbis audio compression library that could potentially be exploited by attackers to cause a crash or execute arbitrary code (CVE-2012-0444).