{"id":"CVE-2018-13300","details":"In FFmpeg 3.2 and 4.0.1, an improper argument (AVCodecParameters) passed to the avpriv_request_sample function in the handle_eac3 function in libavformat/movenc.c may trigger an out-of-array read while converting a crafted AVI file to MPEG4, leading to a denial of service and possibly an information disclosure.","modified":"2026-04-16T06:16:46.977847409Z","published":"2018-07-05T17:29:00.313Z","related":["SUSE-SU-2018:3609-1","openSUSE-SU-2019:1066-1","openSUSE-SU-2024:10754-1"],"references":[{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/104675"},{"type":"ADVISORY","url":"https://www.debian.org/security/2018/dsa-4249"},{"type":"FIX","url":"https://github.com/FFmpeg/FFmpeg/commit/95556e27e2c1d56d9e18f5db34d6f756f3011148"},{"type":"FIX","url":"https://github.com/FFmpeg/FFmpeg/commit/e6d3fd942f772f54ab6a5ca619cdaadef26b7702"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/ffmpeg/ffmpeg","events":[{"introduced":"0"},{"last_affected":"e049f7c24fc6aa5fc925f860e2ad940a75cfd84f"},{"fixed":"95556e27e2c1d56d9e18f5db34d6f756f3011148"},{"fixed":"e6d3fd942f772f54ab6a5ca619cdaadef26b7702"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"4.0.1"}]}}],"versions":["N","n0.11-dev","n0.12-dev","n0.8","n1.1-dev","n1.2-dev","n1.3-dev","n2.0","n2.1-dev","n2.2-dev","n2.3-dev","n2.4-dev","n2.5-dev","n2.6-dev","n2.7-dev","n2.8-dev","n2.9-dev","n3.1-dev","n3.2","n3.2-dev","n3.2.1","n3.2.10","n3.2.2","n3.2.3","n3.2.4","n3.2.5","n3.2.6","n3.2.7","n3.2.8","n3.2.9","n3.3-dev","n3.4-dev","n3.5-dev","n4.0","n4.0.1","n4.1-dev"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-13300.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"9.0"}]}],"vanir_signatures_modified":"2026-04-11T06:58:47Z","vanir_signatures":[{"target":{"file":"libavformat/movenc.c"},"source":"https://github.com/ffmpeg/ffmpeg/commit/95556e27e2c1d56d9e18f5db34d6f756f3011148","signature_version":"v1","signature_type":"Line","id":"CVE-2018-13300-7019f0de","deprecated":false,"digest":{"line_hashes":["117866465038908747555431185891226408089","99836863050707807155297261144028839057","200469054942996357998795024000550793574","3215015680887294862152352069954288076"],"threshold":0.9}},{"digest":{"function_hash":"209559010047689368178480925122595331258","length":3352},"source":"https://github.com/ffmpeg/ffmpeg/commit/95556e27e2c1d56d9e18f5db34d6f756f3011148","target":{"function":"handle_eac3","file":"libavformat/movenc.c"},"signature_type":"Function","id":"CVE-2018-13300-b3d6baef","deprecated":false,"signature_version":"v1"},{"digest":{"function_hash":"197538538023259506621880526769256295611","length":3157},"source":"https://github.com/ffmpeg/ffmpeg/commit/e6d3fd942f772f54ab6a5ca619cdaadef26b7702","target":{"function":"handle_eac3","file":"libavformat/movenc.c"},"signature_type":"Function","id":"CVE-2018-13300-f6ee3681","deprecated":false,"signature_version":"v1"},{"signature_version":"v1","source":"https://github.com/ffmpeg/ffmpeg/commit/e6d3fd942f772f54ab6a5ca619cdaadef26b7702","id":"CVE-2018-13300-ff74cb0a","signature_type":"Line","digest":{"line_hashes":["292855469144843288761289850797484581177","19871434753391898634504264980582914334","56985957617490121393762888563903618538","74301527327112639821960211212114705884"],"threshold":0.9},"deprecated":false,"target":{"file":"libavformat/movenc.c"}}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H"}]}