CVE-2018-19129
MEDIUMLibav 12.3 - NULL Pointer Dereference in ff_mpa_synth_filter_float
Title source: llmDescription
In Libav 12.3, a NULL pointer dereference (RIP points to zero) issue in ff_mpa_synth_filter_float in libavcodec/mpegaudiodsp_template.c can cause a segmentation fault (application crash) via a crafted mov file.
References (1)
Core 1
Core References
Issue Tracking, Third Party Advisory x_refsource_misc
https://bugzilla.libav.org/show_bug.cgi?id=1138
Scores
CVSS v3
6.5
EPSS
0.0090
EPSS Percentile
55.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Details
CWE
CWE-476
Status
published
Products (1)
libav/libav
12.3
Published
Nov 09, 2018
Tracked Since
Feb 18, 2026