Note:
This project will be discontinued after December 13, 2021. [more]
2018-10-30
There exists a NULL pointer dereference in ff_vc1_parse_frame_header_adv in vc1.c in Libav 12.3, which allows attackers to cause a denial-of-service through a crafted aac file.
| Products | Libav |
| Type | NULL Pointer Dereference (CWE-476) |
| First patch | - None (likely due to unavailable code) |
| Links | https://bugzilla.libav.org/show_bug.cgi?id=1136 |