The Node_GetData function in corec/corec/node/node.c in mkvalidator 0.5.1 allows remote attackers to cause a denial of service (Null pointer dereference and application crash) via a crafted mkv file.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/144902/mkvalidator-0.5.1-Denial-Of-Service.html | Third Party Advisory VDB Entry |
http://seclists.org/fulldisclosure/2017/Nov/19 | Mailing List Third Party Advisory |
https://github.com/Matroska-Org/foundation-source/issues/24 | Issue Tracking |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2017-11-09T19:00:00
Updated: 2017-11-09T18:57:01
Reserved: 2017-08-10T00:00:00
Link: CVE-2017-12779
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-11-10T02:29:17.277
Modified: 2017-11-28T19:33:21.000
Link: CVE-2017-12779
JSON object: View
Redhat Information
No data.
CWE