Mandriva Linux Security Advisory 2013-126 - Two vulnerabilities have been discovered in Snack Sound Toolkit, which are caused due to missing boundary checks in the GetWavHeader() function when parsing either format sub-chunks or unknown sub-chunks. This can be exploited to cause a heap-based buffer overflow via specially crafted WAV files with overly large chunk sizes specified.
c4586b12972a3f70c184f4c2b3e28957a8101570e17f862e82dbe7d33a3f98cc