RSS   Podatności dla 'Libebml'   RSS

2021-02-23
 
CVE-2021-3405

CWE-119
 

 
A flaw was found in libebml before 1.4.2. A heap overflow bug exists in the implementation of EbmlString::ReadData and EbmlUnicodeString::ReadData in libebml.

 
2017-01-06
 
CVE-2016-1515

 

 
A use-after-free / double-free vulnerability can occur in libebml master branch while parsing Track elements of the MKV container.

 
 
CVE-2016-1514

 

 
A specially crafted unicode string in libebml master branch can cause an off-by-few read on the heap in unicode string parsing code in libebml. This issue can potentially be used for information leaks.

 
2016-01-29
 
CVE-2015-8791

 

 
The EbmlElement::ReadCodedSizeValue function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted length value in an EBML id, which triggers an invalid memory access.

 
 
CVE-2015-8790

 

 
The EbmlUnicodeString::UpdateFromUTF8 function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted UTF-8 string, which triggers an invalid memory access.

 
 
CVE-2015-8789

 

 
Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document.

 

 >>> Vendor: Matroska 6 Produkty
Demuxer
Libmatroska
Libebml
Libebml2
Mkclean
Mkvalidator


Copyright 2021, cxsecurity.com

 

Back to Top