NVD

Id
28841  
Name
CVE-2015-8791  
Description
The EbmlElement::ReadCodedSizeValue function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted length value in an EBML id, which triggers an invalid memory access.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-19  
Published
2016-01-29  
Modified Date
2016-12-02  
Seq
2015-8791  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
151930 28841 CVE-2015-8791 [matroska-users] 20151020 libEBML v1.3.3, libMatroska v1.4.4 released: important fixes  View
151931 28841 CVE-2015-8791 openSUSE-SU-2016:0125  View
151932 28841 CVE-2015-8791 DSA-3538  View
151933 28841 CVE-2015-8791 https://github.com/Matroska-Org/libebml/blob/release-1.3.3/ChangeLog  View
151934 28841 CVE-2015-8791 https://github.com/Matroska-Org/libebml/commit/24e5cd7c666b1ddd85619d60486db0a5481c1b90  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
11543 JVNDB-2015-006863 libEBML の EbmlElement::ReadCodedSizeValue 関数におけるプロセスヒープメモリから重要な情報を取得される脆弱性 libEBML の EbmlElement::ReadCodedSizeValue 関数には、プロセスヒープメモリから重要な情報を取得される脆弱性が存在します。 CVE-2015-8791 86016 CVE-2015-8791 28841 4.3 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-006863.html 2015-10-20 2016-02-10 View