CVE-2018-12459 (retired)

An inconsistent bits-per-sample value in the ff_mpeg4_decode_picture_header
function in libavcodec/mpeg4videodec.c in FFmpeg 4.0 may trigger an
assertion violation while converting a crafted AVI file to MPEG4, leading
to a denial of service.
Upstream:released (4.0.1)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (code not present)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (code not present)
Ubuntu 19.04 (Disco Dingo):not-affected (7:4.0.1-1)
More Information

Updated: 2019-09-19 16:05:33 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)