mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-22 18:09:40 +02:00
0xMarcio
902 B
902 B
CVE-2009-0586
Description
Integer overflow in the gst_vorbis_tag_add_coverart function (gst-libs/gst/tag/gstvorbistag.c) in vorbistag in gst-plugins-base (aka gstreamer-plugins-base) before 0.10.23 in GStreamer allows context-dependent attackers to execute arbitrary code via a crafted COVERART tag that is converted from a base64 representation, which triggers a heap-based buffer overflow.