LiveActive security incident?Get immediate response
CVE Record

CVE-2017-18243: The unpack_parse_unit function in libavcodec/dirac_parser.c in Libav 12.2 allows remote attackers to cause...

The unpack_parse_unit function in libavcodec/dirac_parser.c in Libav 12.2 allows remote attackers to cause a denial of service (segmentation fault) via a crafted file.

UnknownCVSS not scoredNot KEV-listedUpdated
Glexia's TakeAutomated analysismoderate

Security readout for executives and security teams

Plain-English summary

This issue can crash Libav 12.2 when it parses a specially crafted media file. For businesses, the main concern is service disruption in systems that accept or process untrusted video files. The available sources do not show data theft, code execution, active exploitation, or a named fix.

Executive priority

Prioritize if your business processes untrusted media files with Libav 12.2, especially in customer-facing upload or transcoding services. Otherwise, handle through dependency inventory and normal patch governance because public evidence is limited to denial of service.

Technical view

CVE-2017-18243 is a denial-of-service flaw in Libav 12.2, specifically unpack_parse_unit in libavcodec/dirac_parser.c. A crafted file can trigger a segmentation fault during parsing. Public metadata does not provide CVSS, CWE, CPE coverage, exploit status, or remediation details beyond the Libav Bugzilla reference.

Likely exposure

Exposure is most likely where Libav 12.2, or software embedding its libavcodec parser, processes untrusted media files. Internet-facing upload, transcoding, preview, or scanning workflows are higher concern. The source bundle does not identify other affected products or versions.

Exploitation context

The CVE description says remote attackers can cause a segmentation fault using a crafted file. The CVE is not listed as KEV in the bundle, and no cited source establishes active exploitation. Treat exploitability as file-processing denial of service, not confirmed code execution.

Researcher notes

The public bundle is sparse: no CVSS, CWE, CPE, affected matrix, patch statement, or KEV evidence. The reliable claim is a crafted-file segmentation fault in Libav 12.2 dirac_parser.c. Avoid extending impact to other libraries or versions without vendor confirmation.

Mitigation direction

  • Inventory systems using Libav 12.2 or embedded libavcodec components.
  • Check Libav Bugzilla and vendor advisories for corrected versions or backports.
  • Restrict untrusted media parsing where operationally feasible.
  • Run media processing in isolated, resource-limited environments.
  • Monitor crash rates for libavcodec or Dirac parser failures.

Validation and detection

  • Confirm whether Libav 12.2 is present in deployed systems.
  • Identify workflows that accept user-supplied or remote media files.
  • Review crash logs for segmentation faults during Dirac parsing.
  • Verify vendor guidance before assuming a patch or workaround.
  • Confirm compensating controls around media upload and transcoding services.
Prepared
Confidence
medium
Sources
3

Generated from the cited source records. This long-tail analysis has not been individually reviewed by a named human.

Potential ATT&CK relevance

Conservative CVE-to-ATT&CK context

These mappings and lookup hints may be relevant to the vulnerability behavior, CWE, affected product, or exposure path. Glexia-inferred context is not an official MITRE, ATT&CK, CWE, or CVE Program mapping.

ATT&CK lookup starting points

Use these exact CWE pages and searches to review the Glexia ATT&CK library from this CVE's weakness and description context.

cve · low confidence lookup

CVE-2017-18243 mapping review

Open the CVE-to-ATT&CK bridge for reviewed, inferred, or future official mappings tied to this CVE.

Open ATT&CK lookup
Vulnerability profileCVE Program record
Severity
Unknown
CVSS
Not scored
Known Exploited
No
Published
Official CVE source material

CNA and ADP enrichment extracted from CVE v5

These fields come from the CVE record and ADP containers, not from Glexia's Take. They preserve time-varying source decisions such as CISA SSVC, KEV status, CVSS metrics, and provider references.

0CVSS vectors
0Timeline events
0ADP providers
2Source links

CVSS and timeline data

No CVSS vectors or timeline events were available in the normalized CVE source material.

Source materials

Affected products

Products and packages named in the record

VendorProductVersion / packageStatus
n/an/an/aListed
Weakness

CWE details

No CWE listed

CWE links open Glexia weakness intelligence pages with official CWE context, developer remediation guidance, and related CVE mappings.