{"id":"CVE-2013-0849","details":"The roq_decode_init function in libavcodec/roqvideodec.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via a crafted (1) width or (2) height dimension that is not a multiple of sixteen in id RoQ video data.","modified":"2026-01-27T04:11:34.002620Z","published":"2013-12-07T21:55:09Z","withdrawn":"2026-01-27T04:11:34.002620Z","references":[{"type":"ADVISORY","url":"http://www.debian.org/security/2014/dsa-2855"},{"type":"WEB","url":"http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=3ae610451170cd5a28b33950006ff0bd23036845"},{"type":"WEB","url":"http://www.ffmpeg.org/security.html"}],"schema_version":"1.7.3"}