CVE-2018-1999013

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2018-1999013

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-1999013.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2018-1999013

Downstream

CLEANSTART-2026-EZ98723

CLEANSTART-2026-PS82605

CLEANSTART-2026-XE32069

DEBIAN-CVE-2018-1999013

DSA-4249-1

SUSE-SU-2018:2305-1

UBUNTU-CVE-2018-1999013

Related

SUSE-SU-2018:2305-1

Published

2018-07-23T15:29:00.423Z

Modified

2026-05-15T12:03:29.154175699Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

FFmpeg before commit a7e032a277452366771951e29fd0bf2bd5c029f0 contains a use-after-free vulnerability in the realmedia demuxer that can result in vulnerability allows attacker to read heap memory. This attack appear to be exploitable via specially crafted RM file has to be provided as input. This vulnerability appears to have been fixed in a7e032a277452366771951e29fd0bf2bd5c029f0 and later.

References

Affected packages