CVE-2018-13303
In FFmpeg 4.0.1, the vulnerability CVE-2018-13303 arises from a missing check for the failure of init_get_bits8() in libavcodec/ac3_parser.c (function avpriv_ac3_parse_header). This can trigger a NULL pointer dereference when converting a crafted AVI file to MPEG4, leading to a denial of service....