Integer overflow in the padding implementation in the opus_packet_parse_impl function in src/opus_decoder.c in Opus prior to 1.0.2, as used in Google Chrome prior to 25.0.1364.97 on Windows and Linux and prior to 25.0.1364.99 on Mac OS X and other products, allows remote malicious users to cause a denial of service (out-of-bounds read) via a long packet.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
opus-codec opus |
||
google chrome |
||
opensuse opensuse 12.2 |
||
opensuse opensuse 12.1 |