patch taken from redhat

Index: libvorbis-1.2.0/lib/codebook.c
===================================================================
--- libvorbis-1.2.0/lib/codebook.c	(revision 14603)
+++ libvorbis-1.2.0/lib/codebook.c	(revision 14604)
@@ -159,6 +159,8 @@
   s->entries=oggpack_read(opb,24);
   if(s->entries==-1)goto _eofout;
 
+  if(_ilog(s->dim)+_ilog(s->entries)>24)goto _eofout;
+
   /* codeword ordering.... length ordered or unordered? */
   switch((int)oggpack_read(opb,1)){
   case 0: