VYPR
High severity8.8NVD Advisory· Published Jan 14, 2018· Updated Jun 17, 2026

CVE-2018-5684

CVE-2018-5684

Description

In Libav through 12.2, there is an invalid memcpy call in the ff_mov_read_stsd_entries function of libavformat/mov.c. Remote attackers could leverage this vulnerability to cause a denial of service (segmentation fault) and program failure with a crafted avi file.

Affected products

2
  • Libav/Libavinferred2 versions
    <=12.2+ 1 more
    • (no CPE)range: <=12.2
    • (no CPE)range: <=12.2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.