A stack buffer overflow in the computecodewords function in stbvorbis through 2019-03-04 allows an attacker to cause a denial of service or execute arbitrary code by opening a crafted Ogg Vorbis file.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "0.0~git20190817.1.052dce1-1", "binary_name": "libstb-dev" }, { "binary_version": "0.0~git20190817.1.052dce1-1", "binary_name": "libstb0" }, { "binary_version": "0.0~git20190817.1.052dce1-1", "binary_name": "libstb0-dbgsym" } ] }