From $URL : CVE-2012-6303 was assigned by MITRE to multiple buffer overflows in WaveSurfer (not shipped) and the Snack Sound Toolkit (tcl-snack): Disclosures: http://www.exploit-db.com/exploits/19772/ http://secunia.com/advisories/49889/ Product source: http://www.speech.kth.se/snack/ http://wavesurfer.svn.sourceforge.net/viewvc/wavesurfer/trunk/wavesurfer/ (The www.speech.kth.se site refers to "Snack v2.2.10 released December 01 Bug fix release" but this is apparently about December 01 2004 -- not about a 2012 release.) No fix is available as of yet.
*** This bug has been marked as a duplicate of bug 446822 ***