Denial Of Service (DoS)

ffmpeg is vulnerable to denial of service DoS. The vulnerability exists as an improper integer type in the mpeg4encodegopheader function in libavcodec/mpeg4videoenc.c in FFmpeg 4.0 may trigger an assertion violation while converting a crafted AVI file to MPEG4, leading to a denial of service...

SUSE SLED15 / SLES15 Security Update : ffmpeg (SUSE-SU-2018:3609-1)

This update for ffmpeg fixes the following issues : CVE-2018-13300: An improper argument passed to the avprivrequestsample function may have triggered an out-of-array read while converting a crafted AVI file to MPEG4, leading to a denial of service and possibly an information disclosure bsc110034...

CVE-2018-12458

An improper integer type in the mpeg4encodegopheader function in libavcodec/mpeg4videoenc.c in FFmpeg 2.8 and 4.0 may trigger an assertion violation while converting a crafted AVI file to MPEG4, leading to a denial of service...

CVE-2018-12458

FFmpeg vulnerability CVE-2018-12458: An improper integer type in libavcodec/mpeg4videoenc.c (mpeg4_encode_gop_header) can trigger an assertion, leading to denial of service when converting crafted AVI to MPEG4. Affected: FFmpeg 2.8 and 4.0. Public disclosures in multiple feeds (e.g., Debian DSA-4...