libav before 12.1 is vulnerable to an invalid read of size 1 due to NULL pointer dereferencing in the nsv_read_chunk function in libavformat/nsvdec.c. https://nvd.nist.gov/vuln/detail/CVE-2017-9051