Bug#840338: libass: CVE-2016-7971: large allocation leading to crash

Salvatore Bonaccorso carnil at debian.org
Mon Oct 10 18:21:28 UTC 2016

Source: libass
Version: 0.13.4-1
Severity: normal
Tags: security upstream


the following vulnerability was published for libass. This is to help
tracking the issue in the BTS. This CVE is for the issue which
remained unfixed in the recent upstream version, and so far has no
good solution at the time of writing.

large allocation leading to crash

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2016-7971
[1] http://www.openwall.com/lists/oss-security/2016/10/05/2

Please adjust the affected versions in the BTS as needed.


More information about the pkg-multimedia-maintainers mailing list