CVE-2023-52339
6.5MEDIUMIn libebml before 1.4.5, an integer overflow in MemIOCallback.cpp can occur when reading or writing. It may result in buffer overflows.
Published: 1/12/2024Updated: 11/4/2025
Description
In libebml before 1.4.5, an integer overflow in MemIOCallback.cpp can occur when reading or writing. It may result in buffer overflows.
AI AnalysisPowered by AI
Affected Products
matroskalibebml
References
- https://github.com/Matroska-Org/libebml/blob/v1.x/NEWS.mdRelease Notes
- https://github.com/Matroska-Org/libebml/compare/release-1.4.4...release-1.4.5Release Notes
- https://github.com/Matroska-Org/libebml/issues/147ExploitIssue TrackingPatchVendor Advisory
- https://github.com/Matroska-Org/libebml/pull/148Patch
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BJUXVOIRWPP7OFYUKQZDNJTSLWCPIZBH/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XNANFT4P6KL4WDQ3TV6QQ44NSC7WKLAB/
- https://github.com/Matroska-Org/libebml/blob/v1.x/NEWS.mdRelease Notes
- https://github.com/Matroska-Org/libebml/compare/release-1.4.4...release-1.4.5Release Notes
- https://github.com/Matroska-Org/libebml/issues/147ExploitIssue TrackingPatchVendor Advisory
- https://github.com/Matroska-Org/libebml/pull/148Patch
- https://lists.debian.org/debian-lts-announce/2025/01/msg00016.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BJUXVOIRWPP7OFYUKQZDNJTSLWCPIZBH/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XNANFT4P6KL4WDQ3TV6QQ44NSC7WKLAB/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BJUXVOIRWPP7OFYUKQZDNJTSLWCPIZBH/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XNANFT4P6KL4WDQ3TV6QQ44NSC7WKLAB/