Launchpad.net

CVE 2018-7751

The svg_probe function in libavformat/img2dec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (Infinite Loop) via a crafted XML file.

See the CVE page on Mitre.org for more details.

References