CVE-2018-12458

2018-06-1515:29:00

Google

osv.dev

0.002 Low

EPSS

Percentile

61.0%

JSON

An improper integer type in the mpeg4_encode_gop_header function in libavcodec/mpeg4videoenc.c in FFmpeg 2.8 and 4.0 may trigger an assertion violation while converting a crafted AVI file to MPEG4, leading to a denial of service.

CPENameOperatorVersion
ffmpeg.giteqn2.8
ffmpeg.giteqn2.8-de
ffmpeg.giteqn2.8.1
ffmpeg.giteqn2.8.10
ffmpeg.giteqn3.2-de
ffmpeg.giteqn2.8.14
ffmpeg.giteqn0.12-de
ffmpeg.giteqn2.8.4
ffmpeg.giteqn2.1-de
ffmpeg.giteqn2.3-de

Name	Operator	Version
ffmpeg.git	eq	n2.8
ffmpeg.git	eq	n2.8-de
ffmpeg.git	eq	n2.8.1
ffmpeg.git	eq	n2.8.10
ffmpeg.git	eq	n3.2-de
ffmpeg.git	eq	n2.8.14
ffmpeg.git	eq	n0.12-de
ffmpeg.git	eq	n2.8.4
ffmpeg.git	eq	n2.1-de
ffmpeg.git	eq	n2.3-de