This page lists publicly disclosed CVE vulnerabilities affecting matroska libebml (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-52339 | In libebml before 1.4.5, an integer overflow in MemIOCallback.cpp can occur when reading or writing. It may result in buffer overflows. | [email protected] | 6.5 | 1.09% | 2024-01-12 | 2025-11-04 |
| CVE-2021-3405 | A flaw was found in libebml before 1.4.2. A heap overflow bug exists in the implementation of EbmlString::ReadData and EbmlUnicodeString::ReadData in libebml. | [email protected] | 6.5 | 1.74% | 2021-02-23 | 2024-11-21 |
| CVE-2015-8791 | The EbmlElement::ReadCodedSizeValue function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted length value in an EBML id, which triggers an invalid memory access. | [email protected] | 4.3 | 1.34% | 2016-01-29 | 2026-05-06 |
| CVE-2015-8790 | The EbmlUnicodeString::UpdateFromUTF8 function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted UTF-8 string, which triggers an invalid memory access. | [email protected] | 4.3 | 1.85% | 2016-01-29 | 2026-05-06 |
| CVE-2015-8789 | Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document. | [email protected] | 9.6 | 2.13% | 2016-01-29 | 2026-05-06 |