{"id":"CVE-2018-1999015","details":"FFmpeg before commit 5aba5b89d0b1d73164d3b81764828bb8b20ff32a contains an out of array read vulnerability in ASF_F format demuxer that can result in heap memory reading. This attack appear to be exploitable via specially crafted ASF file that has to provided as input. This vulnerability appears to have been fixed in 5aba5b89d0b1d73164d3b81764828bb8b20ff32a and later.","modified":"2026-07-08T16:40:17.997537Z","published":"2018-07-23T15:29:00.503Z","references":[{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/104896"},{"type":"FIX","url":"https://github.com/FFmpeg/FFmpeg/commit/5aba5b89d0b1d73164d3b81764828bb8b20ff32a"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.ffmpeg.org/ffmpeg.git","events":[{"introduced":"0"},{"last_affected":"e049f7c24fc6aa5fc925f860e2ad940a75cfd84f"}],"database_specific":{"source":"CPE_RANGE","extracted_events":[{"introduced":"0"},{"last_affected":"4.0.1"}],"cpe":"cpe:2.3:a:ffmpeg:ffmpeg:*:*:*:*:*:*:*:*"}}],"versions":["n4.0.1","n4.0","n3.5-dev","n3.4-dev","n3.3-dev","n3.2-dev","n3.1-dev","n2.9-dev","n2.8-dev","n2.7-dev","n2.6-dev","n2.5-dev","n2.4-dev","n2.3-dev","n2.2-dev","n2.0","n2.1-dev","n1.3-dev","n1.2-dev","n1.1-dev","n0.12-dev","n0.11-dev","n0.8","N"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-1999015.json"}},{"ranges":[{"type":"GIT","repo":"https://github.com/ffmpeg/ffmpeg","events":[{"introduced":"0"},{"last_affected":"e049f7c24fc6aa5fc925f860e2ad940a75cfd84f"},{"fixed":"5aba5b89d0b1d73164d3b81764828bb8b20ff32a"}],"database_specific":{"source":["CPE_RANGE","REFERENCES"],"extracted_events":[{"introduced":"0"},{"last_affected":"4.0.1"}],"cpe":"cpe:2.3:a:ffmpeg:ffmpeg:*:*:*:*:*:*:*:*"}}],"versions":["n4.0.1","n4.0","n4.1-dev","n3.5-dev","n3.4-dev","n3.3-dev","n3.2-dev","n3.1-dev","n2.9-dev","n2.8-dev","n2.7-dev","n2.6-dev","n2.5-dev","n2.4-dev","n2.3-dev","n2.2-dev","n2.0","n2.1-dev","n1.3-dev","n1.2-dev","n1.1-dev","n0.12-dev","n0.11-dev","n0.8","N"],"database_specific":{"vanir_signatures_modified":"2026-07-08T16:40:17Z","source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-1999015.json","vanir_signatures":[{"signature_version":"v1","target":{"file":"libavcodec/mpeg4videodec.c"},"source":"https://github.com/ffmpeg/ffmpeg/commit/5aba5b89d0b1d73164d3b81764828bb8b20ff32a","id":"CVE-2018-1999015-92a5c5bd","deprecated":false,"signature_type":"Line","digest":{"line_hashes":["154588092373436050996579567621150770144","205366543679731707625891980858226108674","154659326731670739759571164743190600128","98455387838460767790918906382515860619","315167368245346924680235712282062636846","300233213583662294340399825285435722648","278763030051329222695553849020019029920","160968983651684246480450220943043715537","148322943347523926571301273129765168493","28360168948009581174263147393952273531","228705113264377818209496310424113664354","195713176778428139280852788146604848690","148322943347523926571301273129765168493","78097691408994611126318602882512129800","278763030051329222695553849020019029920","160968983651684246480450220943043715537","148322943347523926571301273129765168493","28360168948009581174263147393952273531","228705113264377818209496310424113664354","308949134545141499896494999778974738047","155235183578586855897773684757626330467","202504997835614985277620262651801594425","95409065129186169132797584713865029031"],"threshold":0.9}},{"signature_version":"v1","target":{"function":"read_quant_matrix_ext","file":"libavcodec/mpeg4videodec.c"},"source":"https://github.com/ffmpeg/ffmpeg/commit/5aba5b89d0b1d73164d3b81764828bb8b20ff32a","id":"CVE-2018-1999015-bb146ed3","deprecated":false,"signature_type":"Function","digest":{"function_hash":"45605205248145989315643699658242339922","length":764}}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}]}