{"id":"CVE-2018-14394","details":"libavformat/movenc.c in FFmpeg before 4.0.2 allows attackers to cause a denial of service (application crash caused by a divide-by-zero error) with a user crafted Waveform audio file.","modified":"2026-04-11T19:05:40.591803Z","published":"2018-07-19T05:29:00.210Z","related":["SUSE-SU-2019:1299-1","SUSE-SU-2019:1299-2"],"references":[{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2019/01/msg00006.html"},{"type":"FIX","url":"https://github.com/FFmpeg/FFmpeg/commit/3a2d21bc5f97aa0161db3ae731fc2732be6108b8"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/ffmpeg/ffmpeg","events":[{"introduced":"0"},{"fixed":"0a155c57bd8eb92ccaf7f5857dc6ab276d235846"},{"fixed":"3a2d21bc5f97aa0161db3ae731fc2732be6108b8"}],"database_specific":{"cpe":"cpe:2.3:a:ffmpeg:ffmpeg:*:*:*:*:*:*:*:*","source":["CPE_FIELD","REFERENCES"],"extracted_events":[{"introduced":"0"},{"fixed":"4.0.2"}]}}],"versions":["N","n0.11-dev","n0.12-dev","n0.8","n1.1-dev","n1.2-dev","n1.3-dev","n2.0","n2.1-dev","n2.2-dev","n2.3-dev","n2.4-dev","n2.5-dev","n2.6-dev","n2.7-dev","n2.8-dev","n2.9-dev","n3.1-dev","n3.2-dev","n3.3-dev","n3.4-dev","n3.5-dev","n4.0","n4.0.1","n4.1-dev"],"database_specific":{"vanir_signatures_modified":"2026-04-11T19:05:40Z","source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-14394.json","vanir_signatures":[{"target":{"file":"libavformat/movenc.c"},"source":"https://github.com/ffmpeg/ffmpeg/commit/3a2d21bc5f97aa0161db3ae731fc2732be6108b8","id":"CVE-2018-14394-6c6703d0","digest":{"threshold":0.9,"line_hashes":["306182149830260832260979441198774379409","171070650195834199310586500933145057113","87481129932226713652919553000304522214"]},"deprecated":false,"signature_version":"v1","signature_type":"Line"},{"target":{"function":"ff_mov_write_packet","file":"libavformat/movenc.c"},"source":"https://github.com/ffmpeg/ffmpeg/commit/3a2d21bc5f97aa0161db3ae731fc2732be6108b8","id":"CVE-2018-14394-ddedcd94","digest":{"function_hash":"293118525475458948957410842096893374496","length":7968},"deprecated":false,"signature_version":"v1","signature_type":"Function"}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}