Package: liboggz2 Version: 1.1.1-7 Severity: important Tags: security, upstream
Dear Maintainer, This bug causes a crash in the application when a specially crafted input file is parsed. It's a read violation to address NULL at src/liboggz/oggz_comments.c:217:7 in oggz_comment_cmp(). To reproduce: Install oggz-tools package. Run the command oggz-validate input_file.ogg I'm sending attached an input file that triggers the bug. Thank you, Rafael.
oggz_comment_cmp.ogg
Description: video/ogg
