Security Advisory

CVE-2019-9718

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-03-12 06:00:00

Last updated 2024-08-04 22:01:53

Assigner mitre

State PUBLISHED

Description

In FFmpeg 3.2 and 4.1, a denial of service in the subtitle decoder allows attackers to hog the CPU via a crafted video file in Matroska format, because ff_htmlmarkup_to_ass in libavcodec/htmlsubtitles.c has a complex format argument to sscanf.

← Browse all CVEs View on cve.org ↗