CVE-2023-52339
6.5MEDIUMIn libebml before 1.4.5, an integer overflow in MemIOCallback.cpp can occur when reading or writing. It may result in buffer overflows.
Publicado: 1/12/2024Actualizado: 11/4/2025
Descripción
In libebml before 1.4.5, an integer overflow in MemIOCallback.cpp can occur when reading or writing. It may result in buffer overflows.
Análisis IAImpulsado por IA
Productos Afectados
matroskalibebml
Referencias
- https://github.com/Matroska-Org/libebml/blob/v1.x/NEWS.mdRelease Notes
- https://github.com/Matroska-Org/libebml/compare/release-1.4.4...release-1.4.5Release Notes
- https://github.com/Matroska-Org/libebml/issues/147ExploitIssue TrackingPatchVendor Advisory
- https://github.com/Matroska-Org/libebml/pull/148Patch
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BJUXVOIRWPP7OFYUKQZDNJTSLWCPIZBH/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XNANFT4P6KL4WDQ3TV6QQ44NSC7WKLAB/
- https://github.com/Matroska-Org/libebml/blob/v1.x/NEWS.mdRelease Notes
- https://github.com/Matroska-Org/libebml/compare/release-1.4.4...release-1.4.5Release Notes
- https://github.com/Matroska-Org/libebml/issues/147ExploitIssue TrackingPatchVendor Advisory
- https://github.com/Matroska-Org/libebml/pull/148Patch
- https://lists.debian.org/debian-lts-announce/2025/01/msg00016.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BJUXVOIRWPP7OFYUKQZDNJTSLWCPIZBH/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XNANFT4P6KL4WDQ3TV6QQ44NSC7WKLAB/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BJUXVOIRWPP7OFYUKQZDNJTSLWCPIZBH/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XNANFT4P6KL4WDQ3TV6QQ44NSC7WKLAB/