Libebml Security Vulnerabilities and Issues — Libebml CVE List

Lucene search

MatroskaLibebml

5 matches found

CVE•added 2021/02/23 8:15 p.m.•83 views

CVE-2021-3405

A flaw was found in libebml before 1.4.2. A heap overflow bug exists in the implementation of EbmlString::ReadData and EbmlUnicodeString::ReadData in libebml.

6.5CVSS6.3AI score0.01253EPSS

CVE•added 2016/01/29 7:59 p.m.•63 views

CVE-2015-8789

Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document.

9.6CVSS9.2AI score0.00379EPSS

CVE•added 2016/01/29 7:59 p.m.•55 views

CVE-2015-8790

The EbmlUnicodeString::UpdateFromUTF8 function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted UTF-8 string, which triggers an invalid memory access.

4.3CVSS4.3AI score0.00536EPSS

CVE•added 2024/01/12 2:15 a.m.•51 views

CVE-2023-52339

In libebml before 1.4.5, an integer overflow in MemIOCallback.cpp can occur when reading or writing. It may result in buffer overflows.

6.5CVSS6.5AI score0.00413EPSS

CVE•added 2016/01/29 7:59 p.m.•42 views

CVE-2015-8791

The EbmlElement::ReadCodedSizeValue function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted length value in an EBML id, which triggers an invalid memory access.

4.3CVSS4.3AI score0.00336EPSS