Mrsmile

**Name of the Vulnerable Software and Affected Versions** libass version 0.14.0 **Description** The issue is caused by a signed integer overflow in the `ass outline construct` function's call to `outline stroke`. **Recommendations** For libass version 0.14.0, consider disabling the `ass outline construct` function or restricting its use until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.