Debian Linux Security Advisory 2412-1 - It was discovered that a heap overflow in the Vorbis audio compression library could lead to the execution of arbitrary code if a malformed Ogg Vorbis file is processed.
cce5a79648e5316a1c38d7be1c1477b0b4494c2b17ee75a2f131b6758b053a72