CVE-2018-7557

The decode_init function in libavcodec/utvideodec.c in FFmpeg 2.8 through 3.4.2 allows remote attackers to cause a denial of service (Out of array read) via an AVI file with crafted dimensions within chroma subsampling data.

References

Affected packages

Git / git.ffmpeg.org/ffmpeg.git

Affected ranges

Type: GIT
Repo: https://git.ffmpeg.org/ffmpeg.git
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

7414d0bda7763f9bd69c26c068e482ab297c1c96

Affected versions

Other

n0.*

n0.11-dev

n0.12-dev

n0.8

n1.*

n1.1-dev

n1.2-dev

n1.3-dev

n2.*

n2.0

n2.1-dev

n2.2-dev

n2.3-dev

n2.4-dev

n2.5-dev

n2.6-dev

n2.7-dev

n2.8-dev

n2.9-dev

n3.*

n3.1-dev

n3.2-dev

n3.3-dev

n3.4-dev

n3.5-dev

Git / github.com/ffmpeg/ffmpeg

Affected ranges

Type: GIT
Repo: https://github.com/ffmpeg/ffmpeg
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

e724bd1dd9efea3abb8586d6644ec07694afceae

Affected versions

Other

n0.*

n0.11-dev

n0.12-dev

n0.8

n1.*

n1.1-dev

n1.2-dev

n1.3-dev

n2.*

n2.0

n2.1-dev

n2.2-dev

n2.3-dev

n2.4-dev

n2.5-dev

n2.6-dev

n2.7-dev

n2.8

n2.8-dev

n2.8.1

n2.8.10

n2.8.11

n2.8.12

n2.8.13

n2.8.14

n2.8.2

n2.8.3

n2.8.4

n2.8.5

n2.8.6

n2.8.7

n2.8.8

n2.8.9

Database specific

vanir_signatures

[
    {
        "source": "https://github.com/ffmpeg/ffmpeg/commit/e724bd1dd9efea3abb8586d6644ec07694afceae",
        "target": {
            "function": "decode_init",
            "file": "libavcodec/utvideodec.c"
        },
        "id": "CVE-2018-7557-c58f81bb",
        "deprecated": false,
        "signature_type": "Function",
        "signature_version": "v1",
        "digest": {
            "length": 2014.0,
            "function_hash": "261170408201920726981716170408581999831"
        }
    },
    {
        "source": "https://github.com/ffmpeg/ffmpeg/commit/e724bd1dd9efea3abb8586d6644ec07694afceae",
        "target": {
            "file": "libavcodec/utvideodec.c"
        },
        "id": "CVE-2018-7557-e1a439bc",
        "deprecated": false,
        "signature_type": "Line",
        "signature_version": "v1",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "214294340827385027346326899809308912278",
                "319967151764465081227513198959321650619",
                "160860407430123656188533758835378100984",
                "88426036291747426103396839917112951526",
                "322060800242239300558022628811003160243",
                "294584906807958280719769276673771155382",
                "173453050150287002342984267387285969060",
                "28682244462948592149093618534071984159",
                "105041463035589690360197019114153569694",
                "112286002592890528022285994238400706647"
            ]
        }
    }
]