Filtered by vendor Webmproject
Subscribe
Total
23 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2016-9969 | 1 Webmproject | 1 Libwebp | 2019-05-28 | 5.1 MEDIUM | 7.5 HIGH |
| In libwebp 0.5.1, there is a double free bug in libwebpmux. | |||||
| CVE-2019-9746 | 1 Webmproject | 1 Libwebm | 2019-03-14 | 5.0 MEDIUM | 7.5 HIGH |
| In libwebm before 2019-03-08, a NULL pointer dereference caused by the functions OutputCluster and OutputTracks in webm_info.cc will trigger an abort, which allows a DoS attack, a similar issue to CVE-2018-19212. | |||||
| CVE-2018-6548 | 1 Webmproject | 1 Libwebm | 2018-02-21 | 7.5 HIGH | 9.8 CRITICAL |
| A use-after-free issue was discovered in libwebm through 2018-02-02. If a Vp9HeaderParser was initialized once before, its property frame_ would not be changed because of code in vp9parser::Vp9HeaderParser::SetFrame. Its frame_ could be freed while the corresponding pointer would not be updated, leading to a dangling pointer. This is related to the function OutputCluster in webm_info.cc. | |||||