{"id":"CVE-2013-2496","details":"The msrle_decode_8_16_24_32 function in msrledec.c in libavcodec in FFmpeg through 1.1.3 does not properly determine certain end pointers, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) or possibly have unspecified other impact via crafted Microsoft RLE data.","modified":"2026-04-10T03:44:26.086521Z","published":"2013-03-09T11:55:01Z","references":[{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-1790-1"},{"type":"WEB","url":"http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=e398990eb87785e20e065cd3f14d1dbb69df4392"}],"schema_version":"1.7.5"}