NuytsTech Security

CVE-2014-9639

by ·

Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (crash) via a crafted number of channels in a WAV file, which triggers an out-of-bounds memory access.

Date published : 2015-01-23

http://www.securityfocus.com/bid/72295

http://lists.fedoraproject.org/pipermail/package-announce/2015-February/150570.html

Tags: