Ubuntu Security Notice 861-1 – It was discovered that libvorbis did not correctly handle ogg files with underpopulated Huffman trees. If a user were tricked into opening a specially crafted ogg file with an application that uses libvorbis, an attacker could cause a denial of service. It was discovered that libvorbis did not correctly handle certain malformed ogg files. If a user were tricked into opening a specially crafted ogg file with an application that uses libvorbis, an attacker could cause a denial of service or possibly execute arbitrary code with the user’s privileges.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/82892/USN-861-1.txt
Source: https://packetstormsecurity.com/files/82892/Ubuntu-Security-Notice-861-1.html