CVE-2019-13615

Published: Jul 16, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

libebml before 1.3.6, as used in the MKV module in VideoLAN VLC Media Player binaries before 3.0.3, has a heap-based buffer over-read in EbmlElement::FindNextElement.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://trac.videolan.org/vlc/ticket/22474

x_refsource_MISC

109304

vdb-entry

x_refsource_BID

https://github.com/Matroska-Org/libebml/commit/05beb69ba60acce09f73ed491bb76f332849c3a0

x_refsource_MISC

https://github.com/Matroska-Org/libebml/compare/release-1.3.5...release-1.3.6

x_refsource_MISC

USN-4073-1

vendor-advisory

x_refsource_UBUNTU

https://github.com/Matroska-Org/libebml/commit/b66ca475be967547af9a3784e720fbbacd381be6

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-13615

Description

Affected Products

References