Launchpad.net

CVE 2014-9640

oggenc/oggenc.c in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted raw file.

See the CVE page on Mitre.org for more details.