CVE-2016-8676

2017-02-15T00:00:00
ID UB:CVE-2016-8676
Type ubuntucve
Reporter ubuntu.com
Modified 2017-02-15T00:00:00

Description

The get_vlc2 function in get_bits.h in Libav 11.9 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted mp3 file. NOTE: this issue exists due to an incomplete fix for CVE-2016-8675.

Notes

Author| Note
---|---
mdeslaur | no fix as of 2016-10-18
ebarretto | no fix as of 2018-09-28