libvorbis OGG Vorbis Processing Multiple Remote Memory Corruption Vulnerabilities

Applications that use the libvorbis library are prone to multiple remote memory-corruption vulnerabilities.

An attacker may exploit these issues to potentially execute arbitrary code within the context of an affected application or cause the application to crash.

These issues affect versions *prior to* libvorbis 1.2.3.

NOTE: These issues were initially described in BID 35927 (Mozilla Firefox 3.5.1/3.0.12 Multiple Memory Corruption Vulnerabilities) but were assigned their own BID to better document them.


 

Privacy Statement
Copyright 2010, SecurityFocus