CVE 2016-7499
The sbr_make_f_master function in aacsbr.c in Libav 11.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted mp3 file.
See the 
CVE page on Mitre.org
for more details.
