libao: Invalid memory allocation in _tokenize_matrix function in audio_out.c (CVE-2017-11548)
The _tokenize_matrix function in audio_out.c in Xiph.Org libao 1.2.0
allows remote attackers to cause
a denial of service (memory corruption) via a crafted MP3 file.
References:
https://nvd.nist.gov/vuln/detail/CVE-2017-11548
http://seclists.org/fulldisclosure/2017/Jul/84
(from redmine: issue id 9207, created on 2018-08-08)
- Relations:
- copied_to #9208 (closed)
- copied_to #9209 (closed)
- copied_to #9210 (closed)
- copied_to #9211 (closed)
- copied_to #9212 (closed)
- child #9208 (closed)
- child #9209 (closed)
- child #9210 (closed)
- child #9211 (closed)
- child #9212 (closed)