{"id":"CVE-2018-13301","details":"In FFmpeg 4.0.1, due to a missing check of a profile value before setting it, the ff_mpeg4_decode_picture_header function in libavcodec/mpeg4videodec.c may trigger a NULL pointer dereference while converting a crafted AVI file to MPEG4, leading to a denial of service.","modified":"2026-02-23T01:42:42.054119Z","published":"2018-07-05T17:29:00.373Z","related":["SUSE-SU-2019:3184-1","SUSE-SU-2019:3184-2"],"references":[{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/104675"},{"type":"FIX","url":"https://github.com/FFmpeg/FFmpeg/commit/2aa9047486dbff12d9e040f917e5f799ed2fd78b"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/ffmpeg/ffmpeg","events":[{"introduced":"0"},{"fixed":"2aa9047486dbff12d9e040f917e5f799ed2fd78b"}]}],"versions":["N","n0.11-dev","n0.12-dev","n0.8","n1.1-dev","n1.2-dev","n1.3-dev","n2.0","n2.1-dev","n2.2-dev","n2.3-dev","n2.4-dev","n2.5-dev","n2.6-dev","n2.7-dev","n2.8-dev","n2.9-dev","n3.1-dev","n3.2-dev","n3.3-dev","n3.4-dev","n3.5-dev","n4.1-dev"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-13301.json","vanir_signatures":[{"digest":{"length":4839,"function_hash":"68964249118775948532251749281526738610"},"signature_version":"v1","source":"https://github.com/ffmpeg/ffmpeg/commit/2aa9047486dbff12d9e040f917e5f799ed2fd78b","deprecated":false,"id":"CVE-2018-13301-1e0bbfee","signature_type":"Function","target":{"function":"ff_mpeg4_decode_picture_header","file":"libavcodec/mpeg4videodec.c"}},{"digest":{"threshold":0.9,"line_hashes":["233299622311307785533508059681355998726","207241619994396014396558140523367239608","177435057124521766130865242719557301830","339127581168994191785220148555854764575","229408726659063287550116270476114514763","320253798208562027100910864703519299677","88108679225706113055928323335199453587","72868725193473715878547893389605945802","317379096000998379459118783259844145148","35179002168177949934239002314297127186","237666933241123373415431091878067085266","58520960334587029648049796218830436826","205988179228698167535919190029537414936","41412947436669317219508560263566516481","294639878760812995551560723967848898108","337561212011190879782893813999107266606","166539988119978690211630587722194839671","252940690963599090017371843428856661174","76021399495569760132443506007294444199","275210860503489031422508135210918469632","82227797915621386760704386022852934952","302877332129873584243634203918951947571","271904439334739552926260759328569695799"]},"signature_version":"v1","source":"https://github.com/ffmpeg/ffmpeg/commit/2aa9047486dbff12d9e040f917e5f799ed2fd78b","deprecated":false,"id":"CVE-2018-13301-9e4963d5","signature_type":"Line","target":{"file":"libavcodec/mpeg4videodec.c"}},{"digest":{"length":278,"function_hash":"229922383581172170650712037378511838544"},"signature_version":"v1","source":"https://github.com/ffmpeg/ffmpeg/commit/2aa9047486dbff12d9e040f917e5f799ed2fd78b","deprecated":false,"id":"CVE-2018-13301-ec5d99aa","signature_type":"Function","target":{"function":"mpeg4_decode_profile_level","file":"libavcodec/mpeg4videodec.c"}}]}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}