CVE 2018-19212

In libwebm through 2018-10-03, there is an abort caused by libwebm::Webm2Pes::InitWebmParser() that will lead to a DoS attack.

Related bugs and status

CVE-2018-19212 (Candidate) is related to these bugs:

Bug #2004523: [MIR] libwebm (transitive dependency of libheif)[libheif -> aom -> libwebm]

Summary				In	Importance	Status
	2004523	[MIR] libwebm (transitive dependency of libheif)[libheif -> aom -> libwebm]		libwebm (Ubuntu)	Undecided	In Progress
	2004523	[MIR] libwebm (transitive dependency of libheif)[libheif -> aom -> libwebm]		libwebm (Debian)	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.