DescriptionGoogle Chrome before 23.0.1271.97, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, do not properly perform AAC decoding, which allows remote attackers to cause a denial of service (stack memory corruption) or possibly have unspecified other impact via vectors related to "an off-by-one overwrite when switching to LTP profile from MAIN."
Overall state of this security issue: Postponed
This issue is currently rated as having critical severity.
|National Vulnerability Database|
- openSUSE-SU-2012:1682-1, published Fri, 21 Dec 2012 16:08:35 +0100 (CET)
List of released packages
|Product(s)||Fixed package version(s)||References|
|openSUSE Tumbleweed|| ||Patchnames:
openSUSE Tumbleweed GA chromedriver