Multiple vulnerabilities has been discovered in libmatio, a MAT File I/O
Library.
CVE-2025-50343
A Denial of Service (DoS) and in certain cases heap corruption vulnerability
was found, which could lead to potential remote code execution if libmatio is
embedded in services that accepts user-supplied .mat files.
CVE-2025-2338
A Denial of Service (DoS) and head-based buffer overflow was found, which
could potentially lead to remote code execution if libmatio is embedded in
services that accepts user-supplied .mat files.
CVE-2022-1515
A memory leak was discovered in matio 1.5.21 and earlier. This could lead
to a potential Denial of Service (DoS).
CVE-2020-36428
A heap-based buffer overflow was found which could lead to potential remote
code execution if libmatio is embedded in services that accepts user-supplied
.mat files.
Additionally CVE-2025-2337 and CVE-2020-36428 was investigated and deemed
not to apply (directly) to this libmatio version.
Get the latest Linux and open source security news straight to your inbox.