CVE-2012-0859
EPSS 2.4%Published: 8/20/2012Modified: 4/28/2026
Description
The render_line function in the vorbis codec (vorbis.c) in libavcodec in FFmpeg before 0.9.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted Vorbis file, related to a large multiplier. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-3893.
Affected packages (1)
- Debian/ffmpegfrom 0, < 7:2.4.1-1