Lucene search
GoogleOSV:CVE-2019-14437HistoryAug 29, 2019 - 6:15 p.m.
CVE-2019-14437
2019-08-2918:15:12
Google
osv.dev
8
The xiph_SplitHeaders function in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 does not check array bounds properly. As a result, a heap-based buffer over-read can be triggered via a crafted .ogg file.
References
git.videolan.org/?p=vlc.git&a=search&h=refs%2Fheads%2Fmaster&st=commit&s=cve-2019
lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html
lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html
seclists.org/bugtraq/2019/Aug/36
security.gentoo.org/glsa/201909-02
usn.ubuntu.com/4131-1/
www.debian.org/security/2019/dsa-4504
www.videolan.org/security/sb-vlc308.html
Related
alpinelinux
alpinelinux
CVE-2019-14437
2019-08-29 18:15:12
cvelist
cvelist
CVE-2019-14437
2019-08-29 17:30:37
nvd
nvd
CVE-2019-14437
2019-08-29 18:15:12
ubuntucve
ubuntucve
CVE-2019-14437
2019-08-29 00:00:00
veracode
veracode
Heap Buffer Over-read
2020-09-21 06:29:49
debiancve
debiancve
CVE-2019-14437
2019-08-29 18:15:12
prion
prion
Heap overflow
2019-08-29 18:15:00
cve
cve
CVE-2019-14437
2019-08-29 18:15:12
threatpost
threatpost
VLC Media Player Allows Desktop Takeover Via Malicious Video Files
2019-08-19 20:59:13
openvas
openvas
VLC Media Player Multiple Vulnerabilities (sb-vlc308) - Mac OS X
2019-08-20 00:00:00
VLC Media Player Multiple Vulnerabilities (sb-vlc308) - Windows
2019-08-20 00:00:00
Ubuntu: Security Advisory (USN-4131-1)
2019-09-12 00:00:00
suse
suse
Security update for vlc (moderate)
2020-04-29 00:00:00
Security update for vlc (moderate)
2020-04-23 00:00:00
gentoo
gentoo
VLC: Multiple vulnerabilities
2019-09-06 00:00:00
kaspersky
kaspersky
KLA11761 Multiple vulnerabilities in VLC media player
2019-08-29 00:00:00
nessus
nessus
GLSA-201909-02 : VLC: Multiple vulnerabilities
2019-09-09 00:00:00
VLC < 3.0.8 Multiple Vulnerabilities
2019-08-23 00:00:00
ubuntu
ubuntu
VLC vulnerabilities
2019-09-11 00:00:00
osv
osv
vlc - security update
2019-08-20 00:00:00
mageia
mageia
Updated vlc packages fixes security vulnerabilities
2019-08-31 16:22:36
debian
debian
[SECURITY] [DSA 4504-1] vlc security update
2019-08-20 22:04:33
freebsd
freebsd
vlc -- multiple vulnerabilities
2019-07-14 00:00:00