The Vulnerability History Project

vorbisdec: Error on bark_map_size equal to 0.

      The value is used to calculate output LSP curve and a division by zero
and out of array accesses would occur.

CVE-2013-0894

CC: libav-stable@libav.org

Reported-by: Dale Curtis <dalecurtis@chromium.org>
Found-by: inferno@chromium.org
Signed-off-by: Michael Niedermayer <michaelni@gmx.at>
Signed-off-by: Luca Barbato <lu_zero@gentoo.org>

by Nelson the Hummingbird 2013-01-10 23:54:12 UTC

commit 11dcecfcca0eca1a571792c4fa3c21fb2cfddddc

FFmpeg Fix CVE-2013-0894

libavcodec/vorbisdec.c

-5

expand_less