Launchpad CVE tracker

CVE 2019-9746

In libwebm before 2019-03-08, a NULL pointer dereference caused by the functions OutputCluster and OutputTracks in webm_info.cc will trigger an abort, which allows a DoS attack, a similar issue to CVE-2018-19212.

Related bugs and status

CVE-2019-9746 (Candidate) is related to these bugs:

Bug #2004523: [MIR] libwebm (transitive dependency of libheif)[libheif -> aom -> libwebm]

Summary				In	Importance	Status
	2004523	[MIR] libwebm (transitive dependency of libheif)[libheif -> aom -> libwebm]		libwebm (Ubuntu)	Undecided	In Progress
	2004523	[MIR] libwebm (transitive dependency of libheif)[libheif -> aom -> libwebm]		libwebm (Debian)	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: https://bugs.chromium....
MISC: https://chromium.googl...

Launchpad.net

CVE 2019-9746

Related bugs and status

Related bugs

References