vulnerability

Debian: CVE-2018-1999013: ffmpeg -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:P/I:N/A:N)	Jul 23, 2018	Feb 25, 2019	Mar 30, 2026

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:N/A:N)

Published

Jul 23, 2018

Added

Feb 25, 2019

Modified

Mar 30, 2026

Description

FFmpeg before commit a7e032a277452366771951e29fd0bf2bd5c029f0 contains a use-after-free vulnerability in the realmedia demuxer that can result in vulnerability allows attacker to read heap memory. This attack appear to be exploitable via specially crafted RM file has to be provided as input. This vulnerability appears to have been fixed in a7e032a277452366771951e29fd0bf2bd5c029f0 and later.

Solution

debian-upgrade-ffmpeg

References

CVE-2018-199901
https://attackerkb.com/topics/CVE-2018-199901
CWE-416
DEBIAN-DSA-4249-1
EUVD-EUVD-2018-10708
https://euvd.enisa.europa.eu/vulnerability/EUVD-2018-10708

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report