[3.4] libvorbis: out-of-bounds write (CVE-2018-5146)
Write out of bounds when processing
malformed Vorbis audio data.
Fixed In Version:
libvorbis 1.3.6
References:
https://github.com/xiph/vorbis/releases/tag/v1.3.6
http://openwall.com/lists/oss-security/2018/03/16/4
(from redmine: issue id 8674, created on 2018-03-19, closed on 2018-07-30)
- Relations:
- copied_to #8669 (closed)
- parent #8669 (closed)