PRIOn knowledge basePRION:CVE-2018-6621

HistoryFeb 05, 2018 - 4:29 a.m.

Design/Logic Flaw

2018-02-0504:29:00

PRIOn knowledge base

www.prio-n.com

6.4 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.7%

JSON

The decode_frame function in libavcodec/utvideodec.c in FFmpeg through 3.2 allows remote attackers to cause a denial of service (out of array read) via a crafted AVI file.

CPENameOperatorVersion
debian_linuxeq8.0
debian_linuxeq9.0
ffmpegle3.2

Name	Operator	Version
debian_linux	eq	8.0
debian_linux	eq	9.0
ffmpeg	le	3.2

References

www.securityfocus.com/bid/102950

git.ffmpeg.org/gitweb/ffmpeg.git/commit/118e1b0b3370dd1c0da442901b486689efd1654b

github.com/FFmpeg/FFmpeg/commit/22aa37c0fedf14531783189a197542a055959b6c

lists.debian.org/debian-lts-announce/2019/01/msg00006.html

www.debian.org/security/2018/dsa-4249