---

CVE-2019-13615 - log back

CVE-2019-13615 created at 25 Sep 2019 19:31:40
Severity	+ Medium
Remote	+ Remote
Type	+ Information disclosure
Description	+ Not an issue in vlc, the issue was in libebml and was fixed in 1.3.6.
References	+ https://trac.videolan.org/vlc/ticket/22474
Notes	+ Initial description was: A heap-based out-of-bounds read has been found in the mkv::demux_sys_t::FreeUnused() function of VLC <= 3.0.7.1.