6.3 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
66.3%
The decode_init function in libavcodec/utvideodec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (out of array read) via an AVI file.
git.videolan.org/?p=ffmpeg.git;a=commit;h=47b7c68ae54560e2308bdb6be4fb076c73b93081
www.securityfocus.com/bid/103732
security.gentoo.org/glsa/202003-65
www.debian.org/security/2018/dsa-4249