In FFmpeg 4.0.1, improper handling of frame types (other than EAC3FRAMETYPEINDEPENDENT) that have multiple independent substreams in the handleeac3 function in libavformat/movenc.c may trigger an out-of-array access while converting a crafted AVI file to MPEG4, leading to a denial of service or possibly unspecified other impact.
{ "vanir_signatures": [ { "id": "CVE-2018-13302-02f653e7", "signature_type": "Line", "digest": { "threshold": 0.9, "line_hashes": [ "286508999898400854302705314410765316288", "81644518206851779125641955481146798733", "332215570920771589035891503880872297760", "20705562946418924332825077821195324035" ] }, "source": "https://github.com/ffmpeg/ffmpeg/commit/ed22dc22216f74c75ee7901f82649e1ff725ba50", "target": { "file": "libavformat/movenc.c" }, "deprecated": false, "signature_version": "v1" }, { "id": "CVE-2018-13302-886e5c21", "signature_type": "Function", "digest": { "function_hash": "74160251388579419138517678707062812479", "length": 3196.0 }, "source": "https://github.com/ffmpeg/ffmpeg/commit/ed22dc22216f74c75ee7901f82649e1ff725ba50", "target": { "file": "libavformat/movenc.c", "function": "handle_eac3" }, "deprecated": false, "signature_version": "v1" } ] }