Note:
This project will be discontinued after December 13, 2021. [more]
2018-12-10
In Libav 12.3, there is a floating point exception in the range_decode_culshift function (called from range_decode_bits) in libavcodec/apedec.c that will lead to remote denial of service via crafted input.
| Products | Libav |
| Type | Improper Input Validation (CWE-20) |
| First patch | - None (likely due to unavailable code) |
| Links | https://bugzilla.libav.org/show_bug.cgi?id=1141 |