VYPR
Unrated severityOSV Advisory· Published Nov 9, 2018· Updated Aug 5, 2024

CVE-2018-19128

CVE-2018-19128

Description

In Libav 12.3, there is a heap-based buffer over-read in decode_frame in libavcodec/lcldec.c that allows an attacker to cause denial-of-service via a crafted avi file.

Affected products

2
  • Libav/LibavOSV2 versions
    dev14.2, v0.7, v0.7b1, …+ 1 more
    • (no CPE)range: dev14.2, v0.7, v0.7b1, …
    • (no CPE)range: = 12.3

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.