Vulnerabilities (CVE)

Filtered by vendor Matroska Subscribe
Filtered by product Libebml
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-52339 1 Matroska 1 Libebml 2024-11-21 N/A 6.5 MEDIUM
In libebml before 1.4.5, an integer overflow in MemIOCallback.cpp can occur when reading or writing. It may result in buffer overflows.
CVE-2021-3405 3 Debian, Fedoraproject, Matroska 3 Debian Linux, Fedora, Libebml 2024-11-21 4.3 MEDIUM 6.5 MEDIUM
A flaw was found in libebml before 1.4.2. A heap overflow bug exists in the implementation of EbmlString::ReadData and EbmlUnicodeString::ReadData in libebml.
CVE-2015-8791 1 Matroska 1 Libebml 2024-11-21 4.3 MEDIUM 4.3 MEDIUM
The EbmlElement::ReadCodedSizeValue function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted length value in an EBML id, which triggers an invalid memory access.
CVE-2015-8790 1 Matroska 1 Libebml 2024-11-21 4.3 MEDIUM 4.3 MEDIUM
The EbmlUnicodeString::UpdateFromUTF8 function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted UTF-8 string, which triggers an invalid memory access.
CVE-2015-8789 1 Matroska 1 Libebml 2024-11-21 9.3 HIGH 9.6 CRITICAL
Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document.