Описание
In libwebm before 2019-03-08, a NULL pointer dereference caused by the functions OutputCluster and OutputTracks in webm_info.cc will trigger an abort, which allows a DoS attack, a similar issue to CVE-2018-19212.
Ссылки
- Permissions RequiredThird Party Advisory
- Mailing ListPatchThird Party Advisory
- Permissions RequiredThird Party Advisory
- Mailing ListPatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.0.0.27 (включая)
cpe:2.3:a:webmproject:libwebm:*:*:*:*:*:*:*:*
EPSS
Процентиль: 56%
0.00336
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-476
Связанные уязвимости
CVSS3: 7.5
ubuntu
почти 7 лет назад
In libwebm before 2019-03-08, a NULL pointer dereference caused by the functions OutputCluster and OutputTracks in webm_info.cc will trigger an abort, which allows a DoS attack, a similar issue to CVE-2018-19212.
CVSS3: 7.5
github
больше 3 лет назад
In libwebm before 2019-03-08, a NULL pointer dereference caused by the functions OutputCluster and OutputTracks in webm_info.cc will trigger an abort, which allows a DoS attack, a similar issue to CVE-2018-19212.
EPSS
Процентиль: 56%
0.00336
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-476