12 matches found
CVE-2017-12801
The UpdateDataSize function in ebmlmaster.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service assert fault via a crafted mkv file...
libebml2 UpdateDataSize function denial of service vulnerability
libebml2 is a mkv file parsing library for analyzing or parsing mkv files for playback. A denial of service vulnerability exists in the UpdateDataSize function in ebmlmaster.c in libebml2 2012-08-26 and prior versions of Libebml2. With a specially crafted mkv file, a remote attacker can exploit...
libEBML Memory Misreference Vulnerability
libEBML is a C++ library for parsing EBML files maintained by the Matroska team. A memory misreference vulnerability exists in the 'EbmlMaster::Read' function of libEBML when parsing deep nested elements of infinite size, which allows remote attackers to exploit the vulnerability to access freed...
CVE-2015-8789
Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document...
CVE-2015-8789
Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document...
UBUNTU-CVE-2015-8789
Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document...
CVE-2015-8789
Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document...
Design/Logic Flaw
Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document...
CVE-2015-8789
The CVE-2015-8789 issue affects libebml (EbmlMaster::Read) prior to 1.3.3. A use-after-free condition occurs when parsing a deeply nested EBML element with infinite size, which can lead to remote code execution if a malicious document is provided. Public advisories (Debian DSA-3538-1) describe th...
CVE-2015-8789
Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document...
CVE-2015-8789
Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document...
Updated libebml packages fix security vulnerability
In EbmlMaster::Read in libebml before 1.3.3, when the parser encountered a deeply nested element with an infinite size then a following element of an upper level was not propagated correctly. Instead the element with the infinite size was added into the EBML element tree a second time resulting i...