Inconsistent Bits-per-Sample Value in FFmpeg 4.0 AVI to MPEG4 Conversion Vulnerability

Inconsistent Bits-per-Sample Value in FFmpeg 4.0 AVI to MPEG4 Conversion Vulnerability

CVE-2018-12459 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

An inconsistent bits-per-sample value in the ff_mpeg4_decode_picture_header function in libavcodec/mpeg4videodec.c in FFmpeg 4.0 may trigger an assertion violation while converting a crafted AVI file to MPEG4, leading to a denial of service.

Learn more about our Web Application Penetration Testing UK.