CVE-2013-4358
FFmpeg < 0.11.4 - Denial of Service via Alternating Bit Depths in H.264 Data
Title source: llmDescription
libavcodec/h264.c in FFmpeg before 0.11.4 allows remote attackers to cause a denial of service (crash) via vectors related to alternating bit depths in H.264 data.
References (2)
Core 2
Core References
Patch x_refsource_confirm
http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=072be3e8969f24113d599444be4d6a0ed04a6602
Various Sources x_refsource_confirm
http://www.ffmpeg.org/security.html
Scores
EPSS
0.0047
EPSS Percentile
65.0%
Details
Status
published
Products (4)
ffmpeg/ffmpeg
0.11
ffmpeg/ffmpeg
0.11.1
ffmpeg/ffmpeg
0.11.2
ffmpeg/ffmpeg
< 0.11.3
Published
Dec 24, 2013
Tracked Since
Feb 18, 2026