Qflbo

**Name of the Vulnerable Software and Affected Versions** libebml2 versions prior to 2012-08-26 **Description** The issue allows remote attackers to cause a denial of service, resulting in an invalid free and application crash, via a crafted mkv file. This is due to a problem in the ReadData function in ebmlstring.c. **Recommendations** For versions prior to 2012-08-26, as a temporary workaround, consider disabling the ReadData function in ebmlstring.c until a patch is available. Restrict access to mkv files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** libebml2 versions prior to 2012-08-26 **Description** The issue allows remote attackers to cause a denial of service, resulting in a null pointer dereference and application crash, via a crafted mkv file. This is due to a problem in the EBML BufferToID function in ebmlelement.c. **Recommendations** For versions prior to 2012-08-26, consider updating to a version released after 2012-08-26 to resolve the issue. As a temporary workaround, consider restricting the processing of mkv files from untrusted sources to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** libebml2 versions prior to 2012-08-26 **Description** The issue allows remote attackers to cause a denial of service via a crafted mkv file, specifically through the ReadData function in ebmlmaster.c. **Recommendations** For versions prior to 2012-08-26, consider avoiding the use of the ReadData function in ebmlmaster.c until a patch is available.

**Name of the Vulnerable Software and Affected Versions** libebml2 versions prior to 2012-08-26 **Description** The issue allows remote attackers to cause a denial of service via a crafted mkv file, specifically through the ReadDataFloat function in ebmlnumber.c. **Recommendations** For versions prior to 2012-08-26, update to a version released after 2012-08-26 to resolve the issue.