6 matches found
CVE-2018-6406
The function ParseVP9SuperFrameIndex in common/libwebmutil.cc in libwebm through 2018-01-30 does not validate the childframelength data obtained from a .webm file, which allows remote attackers to cause an information leak or a denial of service heap-based buffer over-read and later out-of-bounds...
CVE-2018-6406
The function ParseVP9SuperFrameIndex in common/libwebmutil.cc in libwebm through 2018-01-30 does not validate the childframelength data obtained from a .webm file, which allows remote attackers to cause an information leak or a denial of service heap-based buffer over-read and later out-of-bounds...
Heap overflow
The function ParseVP9SuperFrameIndex in common/libwebmutil.cc in libwebm through 2018-01-30 does not validate the childframelength data obtained from a .webm file, which allows remote attackers to cause an information leak or a denial of service heap-based buffer over-read and later out-of-bounds...
CVE-2018-6406
The function ParseVP9SuperFrameIndex in common/libwebmutil.cc in libwebm through 2018-01-30 does not validate the childframelength data obtained from a .webm file, which allows remote attackers to cause an information leak or a denial of service heap-based buffer over-read and later out-of-bounds...
CVE-2018-6406
CVE-2018-6406 affects libwebm: the ParseVP9SuperFrameIndex function in common/libwebm_util.cc does not validate child_frame_length from a .webm file, allowing remote attackers to cause information leaks or a denial of service via a heap-based buffer over-read and subsequent out-of-bounds write. T...
CVE-2018-6406
Removed by vendor...