Invalid Memory Access Vulnerability in Libav 12.3's vc1_decode_frame Function

CVE-2018-19130 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

In Libav 12.3, there is an invalid memory access in vc1_decode_frame in libavcodec/vc1dec.c that allows attackers to cause a denial-of-service via a crafted aac file. NOTE: This may be a duplicate of CVE-2017-17127

Learn more about our Web Application Penetration Testing UK.