2018-03-22 22:29:00 2018-04-18 15:23:41

The stereo_processing function in libavcodec/aacps.c in Libav 12.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted aac file, related to ff_ps_apply.

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

NONE

Integrity

NONE

Availability

PARTIAL
Advisory Patch Confirmed Link
https://bugzilla.libav.org/show_bug.cgi?id=1105