Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DLA-438-1
HistoryFeb 28, 2016 - 12:00 a.m.

libebml - security update

2016-02-2800:00:00
Google
osv.dev
6

0.004 Low

EPSS

Percentile

73.7%

JSON

Two security-related issues were fixed in libebml, a library for accessing the
EBML format:

  • CVE-2015-8790
    The EbmlUnicodeString::UpdateFromUTF8 function in libEBML before 1.3.3
    allows context-dependent attackers to obtain sensitive information from
    process heap memory via a crafted UTF-8 string, which triggers an invalid
    memory access.
  • CVE-2015-8791
    The EbmlElement::ReadCodedSizeValue function in libEBML before 1.3.3 allows
    context-dependent attackers to obtain sensitive information from process
    heap memory via a crafted length value in an EBML id, which triggers an
    invalid memory access.

For Debian 6 squeeze, these issues have been fixed in libebml version
0.7.7-3.1+deb6u1. We recommend you to upgrade your libebml packages.

CPENameOperatorVersion
libebmleq0.7.7-3.1

Related

debian 3
nessus 3
openvas 3
freebsd 1
osv 1
cvelist 2
nvd 3
talos 1
debiancve 2
prion 3
ubuntucve 2
cve 3
debian
debian
[SECURITY] [DLA 438-1] libebml security update
2016-02-28 17:36:43
[SECURITY] [DSA 3538-1] libebml security update
2016-03-31 10:55:43
[SECURITY] [DSA 3538-1] libebml security update
2016-03-31 10:55:43
nessus
nessus
Debian DLA-438-1 : libebml security update
2016-02-29 00:00:00
Debian DSA-3538-1 : libebml - security update
2016-04-01 00:00:00
FreeBSD : libebml -- multiple vulnerabilities (a130bd8c-eafe-11e6-9ac1-a4badb2f4699)
2017-02-06 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-438-1)
2023-03-08 00:00:00
Debian Security Advisory DSA 3538-1 (libebml - security update)
2016-03-31 00:00:00
Debian: Security Advisory (DSA-3538-1)
2016-03-30 00:00:00
freebsd
freebsd
libebml -- multiple vulnerabilities
2015-10-20 00:00:00
osv
osv
libebml - security update
2016-03-31 00:00:00
cvelist
cvelist
CVE-2015-8790
2016-01-29 19:00:00
CVE-2015-8791
2016-01-29 19:00:00
nvd
nvd
CVE-2015-8790
2016-01-29 19:59:02
CVE-2015-8791
2016-01-29 19:59:03
CVE-2016-1514
2017-01-06 21:59:00
talos
talos
Matroska libebml EbmlUnicodeString Heap Information Leak
2016-01-28 00:00:00
debiancve
debiancve
CVE-2015-8790
2016-01-29 19:59:02
CVE-2015-8791
2016-01-29 19:59:03
prion
prion
Design/Logic Flaw
2016-01-29 19:59:00
Design/Logic Flaw
2016-01-29 19:59:00
Design/Logic Flaw
2017-01-06 21:59:00
ubuntucve
ubuntucve
CVE-2015-8790
2016-01-29 00:00:00
CVE-2015-8791
2016-01-29 00:00:00
cve
cve
CVE-2015-8790
2016-01-29 19:59:02
CVE-2015-8791
2016-01-29 19:59:03
CVE-2016-1514
2017-01-06 21:59:00

0.004 Low

EPSS

Percentile

73.7%

JSON
Related for OSV:DLA-438-1
debian3nessus3openvas3freebsd1osv1cvelist2nvd3talos1debiancve2prion3ubuntucve2cve3