Candidate: CVE-2017-9608
PublicDate: 2017-12-27 19:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9608
 http://www.openwall.com/lists/oss-security/2017/08/14/1
Description:
 The dnxhd decoder in FFmpeg before 3.2.6, and 3.3.x before 3.3.3 allows
 remote attackers to cause a denial of service (NULL pointer dereference)
 via a crafted mov file.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by: Yihan Lian
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H [6.5 MEDIUM]

Patches_ffmpeg:
upstream_ffmpeg: needs-triage
precise/esm_ffmpeg: DNE
trusty_ffmpeg: DNE
trusty/esm_ffmpeg: DNE
vivid/ubuntu-core_ffmpeg: DNE
xenial_ffmpeg: not-affected (code not present)
zesty_ffmpeg: ignored (reached end-of-life)
artful_ffmpeg: ignored (reached end-of-life)
bionic_ffmpeg: not-affected (7:3.4-1)
devel_ffmpeg: not-affected (7:3.4-1)