CVE-2013-0873: qffmpeg: Invalid free in libavcodec/shorten.c due to invalid channel count

Severity: Critical

CVSS Score: 10

The read_header function in libavcodec/shorten.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via an invalid channel count, related to "freeing invalid addresses."