Medium severity6.5NVD Advisory· Published Jul 19, 2018· Updated Jun 17, 2026
CVE-2018-14395
CVE-2018-14395
Description
libavformat/movenc.c in FFmpeg 3.2 and 4.0.2 allows attackers to cause a denial of service (application crash caused by a divide-by-zero error) with a user crafted audio file when converting to the MOV audio format.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6- osv-coords5 versionspkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP1pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP1
< 3.4.2-4.17.26+ 4 more
- (no CPE)range: < 3.4.2-4.17.26
- (no CPE)range: < 3.4.2-4.17.26
- (no CPE)range: < 3.4.2-4.17.26
- (no CPE)range: < 3.4.2-4.17.26
- (no CPE)range: < 3.4.2-4.17.26
Patches
Vulnerability mechanics
References
4- github.com/FFmpeg/FFmpeg/commit/2c0e98a0b478284bdff6d7a4062522605a8beae5nvdPatchThird Party Advisory
- github.com/FFmpeg/FFmpeg/commit/fa19fbcf712a6a6cc5a5cfdc3254a97b9bce6582nvdPatchThird Party Advisory
- www.securitytracker.com/id/1041394nvdThird Party AdvisoryVDB Entry
- www.debian.org/security/2018/dsa-4258nvdThird Party Advisory
News mentions
0No linked articles in our index yet.