VYPR
Vendor

Matroska Org

Products
7
CVEs
16
Across products
39
Status
Private

Products

7

Recent CVEs

16
  • CVE-2015-8789CriJan 29, 2016
    risk 0.56cvss 9.6epss 0.02

    Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document.

  • CVE-2017-12803MedNov 10, 2017
    risk 0.42cvss 6.5epss 0.02

    The Node_ValidatePtr function in corec/corec/node/node.c in mkclean 0.8.9 allows remote attackers to cause a denial of service (assert fault) via a crafted mkv file.

  • CVE-2017-12802MedNov 10, 2017
    risk 0.42cvss 6.5epss 0.02

    The EBML_IntegerValue function in ebmlnumber.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (assert fault) via a crafted mkv file.

  • CVE-2017-12801MedNov 10, 2017
    risk 0.42cvss 6.5epss 0.02

    The UpdateDataSize function in ebmlmaster.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (assert fault) via a crafted mkv file.

  • CVE-2017-12800MedNov 10, 2017
    risk 0.42cvss 6.5epss 0.02

    The EBML_FindNextElement function in ebmlmain.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (Null pointer dereference and application crash) via a crafted mkv file.

  • CVE-2017-12783MedNov 10, 2017
    risk 0.42cvss 6.5epss 0.02

    The ReadDataFloat function in ebmlnumber.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (assert fault) via a crafted mkv file.

  • CVE-2017-12782MedNov 10, 2017
    risk 0.42cvss 6.5epss 0.02

    The ReadData function in ebmlmaster.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (assert fault) via a crafted mkv file.

  • CVE-2017-12781MedNov 10, 2017
    risk 0.42cvss 6.5epss 0.02

    The EBML_BufferToID function in ebmlelement.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (Null pointer dereference and application crash) via a crafted mkv file.

  • CVE-2017-12780MedNov 10, 2017
    risk 0.42cvss 6.5epss 0.02

    The ReadData function in ebmlstring.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (invalid free and application crash) via a crafted mkv file.

  • CVE-2017-12779MedNov 10, 2017
    risk 0.42cvss 6.5epss 0.02

    The Node_GetData function in corec/corec/node/node.c in mkvalidator 0.5.1 allows remote attackers to cause a denial of service (Null pointer dereference and application crash) via a crafted mkv file.

  • CVE-2015-8792MedJan 29, 2016
    risk 0.28cvss 5.3epss 0.01

    The KaxInternalBlock::ReadData function in libMatroska before 1.4.4 allows context-dependent attackers to obtain sensitive information from process heap memory via crafted EBML lacing, which triggers an invalid memory access.

  • CVE-2015-8791MedJan 29, 2016
    risk 0.21cvss 4.3epss 0.01

    The EbmlElement::ReadCodedSizeValue function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted length value in an EBML id, which triggers an invalid memory access.

  • CVE-2015-8790MedJan 29, 2016
    risk 0.21cvss 4.3epss 0.02

    The EbmlUnicodeString::UpdateFromUTF8 function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted UTF-8 string, which triggers an invalid memory access.

  • CVE-2008-1161Mar 10, 2008
    risk 0.01cvss epss 0.07

    Buffer overflow in the Matroska demuxer (demuxers/demux_matroska.c) in xine-lib before 1.1.10.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Matroska file with invalid frame sizes.

  • CVE-2023-52339MedJan 12, 2024
    risk 0.00cvss 6.5epss 0.01

    In libebml before 1.4.5, an integer overflow in MemIOCallback.cpp can occur when reading or writing. It may result in buffer overflows.

  • CVE-2019-13615MedJul 16, 2019
    risk 0.00cvss 5.5epss 0.02

    libebml before 1.3.6, as used in the MKV module in VideoLAN VLC Media Player binaries before 3.0.3, has a heap-based buffer over-read in EbmlElement::FindNextElement.