CVE-2017-12802

The EBMLIntegerValue function in ebmlnumber.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service assert fault via a crafted mkv file...

FreeBSD : libebml -- multiple vulnerabilities (a130bd8c-eafe-11e6-9ac1-a4badb2f4699)

Mortiz Bunkus reports : Multiple invalid memory accesses vulnerabilities. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2018 Jacques Vidrine and contributors Redistributio...

VLC Media Player < 2.2.2 Multiple Vulnerabilities

Binary data 9267.prm...

Debian DSA-3538-1 : libebml - security update

Several vulnerabilities were discovered in libebml, a library for manipulating Extensible Binary Meta Language files. - CVE-2015-8789 Context-dependent attackers could trigger a use-after-free vulnerability by providing a maliciously crafted EBML document. - CVE-2015-8790 Context-dependent...

[SECURITY] [DSA 3538-1] libebml security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3538-1 [email protected] https://www.debian.org/security/ Sebastien Delafond March 31, 2016 https://www.debian.org/security/faq -...

Debian Security Advisory DSA 3538-1 (libebml - security update)

Several vulnerabilities were discovered in libebml, a library for manipulating Extensible Binary Meta Language files. CVE-2015-8789 Context-dependent attackers could trigger a use-after-free vulnerability by providing a maliciously crafted EBML document. CVE-2015-8790 Context-dependent attackers...

DSA-3538-1 libebml - security update

Bulletin has no description...

Debian: Security Advisory (DSA-3538-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DLA-438-1 : libebml security update

Two security-related issues were fixed in libebml, a library for accessing the EBML format : CVE-2015-8790 The EbmlUnicodeString::UpdateFromUTF8 function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted UTF-8 string,...

[SECURITY] [DLA 438-1] libebml security update

Package : libebml Version : 0.7.7-3.1 CVE ID : CVE-2015-8790 CVE-2015-8791 Two security-related issues were fixed in libebml, a library for accessing the EBML format: CVE-2015-8790 The EbmlUnicodeString::UpdateFromUTF8 function in libEBML before 1.3.3 allows context-dependent attackers to obtain...

DLA-438-1 libebml - security update

Bulletin has no description...

libEBML Information Disclosure Vulnerability

libEBML is a C++ library for parsing EBML files maintained by the Matroska team. A security vulnerability in the 'EbmlUnicodeString::UpdateFromUTF8' function of libEBML allows an attacker to obtain sensitive information in process heap memory using specially crafted UTF-8 strings...

CVE-2015-8791

The EbmlElement::ReadCodedSizeValue function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted length value in an EBML id, which triggers an invalid memory access...

CVE-2015-8791

The EbmlElement::ReadCodedSizeValue function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted length value in an EBML id, which triggers an invalid memory access...

CVE-2015-8790

The EbmlUnicodeString::UpdateFromUTF8 function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted UTF-8 string, which triggers an invalid memory access...

CVE-2015-8790

The EbmlUnicodeString::UpdateFromUTF8 function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted UTF-8 string, which triggers an invalid memory access...

CVE-2015-8791

The EbmlElement::ReadCodedSizeValue function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted length value in an EBML id, which triggers an invalid memory access...

Design/Logic Flaw

The EbmlUnicodeString::UpdateFromUTF8 function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted UTF-8 string, which triggers an invalid memory access...

Design/Logic Flaw

The EbmlElement::ReadCodedSizeValue function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted length value in an EBML id, which triggers an invalid memory access...

Design/Logic Flaw

Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document...