CVE-2019-9717

Name of the Vulnerable Software and Affected Versions Libav version 12.3

Description The issue allows attackers to cause a denial of service by consuming excessive CPU resources via a crafted video file in Matroska format. This is due to a complex format argument to sscanf in the srt to ass function within libavcodec/srtdec.c.

Recommendations For Libav version 12.3, consider restricting the use of the subtitle decoder to minimize the risk of exploitation until a patch is available.