Ubuntu Security Notice USN-735-1 – It was discovered that the Base64 decoding functions in GStreamer Base Plugins did not properly handle large images in Vorbis file tags. If a user were tricked into opening a specially crafted Vorbis file, an attacker could possibly execute arbitrary code with user privileges.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/75767/USN-735-1.txt
Source: https://packetstormsecurity.com/files/75767/Ubuntu-Security-Notice-735-1.html