CVE-2015-8790

Name of the Vulnerable Software and Affected Versions libEBML versions prior to 1.3.3

Description The issue allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted UTF-8 string, which triggers an invalid memory access. This occurs in the EbmlUnicodeString::UpdateFromUTF8 function.

Recommendations For versions prior to 1.3.3, update to version 1.3.3 or later to resolve the issue.