CVE-2017-18244

Name of the Vulnerable Software and Affected Versions: Libav version 12.2

Description: The issue is related to the stereo processing function in libavcodec/aacps.c, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted aac file. This is related to the ff ps apply function.

Recommendations: For Libav version 12.2, consider updating to a newer version that contains a fix for this issue, as the current version allows for a denial of service attack via a crafted aac file. At the moment, there is no information about a newer version that contains a fix for this vulnerability.