VYPR
Medium severity6.5OSV Advisory· Published Jul 5, 2018· Updated Jun 17, 2026

CVE-2018-13303

CVE-2018-13303

Description

In FFmpeg 4.0.1, a missing check for failure of a call to init_get_bits8() in the avpriv_ac3_parse_header function in libavcodec/ac3_parser.c may trigger a NULL pointer dereference while converting a crafted AVI file to MPEG4, leading to a denial of service.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • FFmpeg/FfmpegOSV2 versions
    N, n0.11-dev, n0.12-dev, …+ 1 more
    • (no CPE)range: N, n0.11-dev, n0.12-dev, …
    • (no CPE)range: =4.0.1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.