CVE-2012-0859
EPSS 2.4%發布日:2012/8/20修改日:2026/4/28
描述
The render_line function in the vorbis codec (vorbis.c) in libavcodec in FFmpeg before 0.9.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted Vorbis file, related to a large multiplier. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-3893.
受影響套件(1)
- Debian/ffmpegfrom 0, < 7:2.4.1-1