EPSS
Percentile
77.3%
FFmpeg is vulnerable to denial of service (DoS) attacks and possibly other attacks. A malicious user can pass a malicious AAC file to the system to cause an out-of-bounds array access that can cause the system to crash.
ffmpeg.org/security.html
git.videolan.org/?p=ffmpeg.git;a=commit;h=79a98294da6cd85f8c86b34764c5e0c43b09eea3
www.securitytracker.com/id/1033483
www.ubuntu.com/usn/USN-2944-1
lists.debian.org/debian-lts-announce/2018/12/msg00009.html