Lucene search
K

783 matches found

AlpineLinux
AlpineLinux
added 2019/08/29 6:47 p.m.28 views

CVE-2019-14778

The mkv::virtualsegmentc::seek method of demux/mkv/virtualsegment.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free...

7.8CVSS8.7AI score0.01455EPSS
Exploits0
Cvelist
Cvelist
added 2019/08/29 6:45 p.m.18 views

CVE-2019-14776

A heap-based buffer over-read exists in DemuxInit in demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 via a crafted .mkv file...

8.4AI score0.01484EPSS
Exploits0References8
CVE
CVE
added 2019/08/29 6:45 p.m.166 views

CVE-2019-14776

CVE-2019-14776 is a heap-based buffer over-read in DemuxInit() of demux/asf/asf.c in VideoLAN VLC media player

7.8CVSS8.3AI score0.01484EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2019/08/29 6:45 p.m.18 views

CVE-2019-14776

A heap-based buffer over-read exists in DemuxInit in demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 via a crafted .mkv file...

7.8CVSS7.7AI score0.01484EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2019/08/29 6:45 p.m.26 views

CVE-2019-14776

A heap-based buffer over-read exists in DemuxInit in demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 via a crafted .mkv file...

7.8CVSS8.5AI score0.01484EPSS
Exploits0
CVE
CVE
added 2019/08/29 6:43 p.m.172 views

CVE-2019-14533

CVE-2019-14533 affects VideoLAN VLC media player 3.0.7.1, where the control function of demux/asf/asf.c has a use-after-free vulnerability. Public sources in the connected documents confirm this specific ASF demuxer use-after-free (notable in the 3.0.7.1 release) and document that the issue has b...

7.8CVSS8.4AI score0.01455EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2019/08/29 6:41 p.m.170 views

CVE-2019-14534

In VLC media player, CVE-2019-14534 is a NULL pointer dereference in the ASF demuxer (SeekPercent in demux/asf/asf.c) that can lead to a denial of service. Affected product: VLC up to version 3.0.7.1. Root cause: NULL pointer dereference in ASF demuxer code when seeking percent. Impact: DoS with ...

5.5CVSS6.8AI score0.01429EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2019/08/29 6:41 p.m.26 views

CVE-2019-14534

In VideoLAN VLC media player 3.0.7.1, there is a NULL pointer dereference at the function SeekPercent of demux/asf/asf.c that will lead to a denial of service attack...

5.5CVSS6.4AI score0.01429EPSS
Exploits0
OSV
OSV
added 2019/08/29 6:15 p.m.19 views

CVE-2019-14498

A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted CAF file...

7.8CVSS6.4AI score
Exploits0References8
NVD
NVD
added 2019/08/29 6:15 p.m.21 views

CVE-2019-14535

A divide-by-zero error exists in the SeekIndex function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted WMV file...

7.8CVSS8.4AI score0.01484EPSS
Exploits0References8
OSV
OSV
added 2019/08/29 6:15 p.m.1 views

DEBIAN-CVE-2019-14438

A heap-based buffer over-read in xiphPackHeaders in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer over-read via a crafted .ogg file...

7.8CVSS7.6AI score0.01818EPSS
Exploits0References1
OSV
OSV
added 2019/08/29 6:15 p.m.2 views

DEBIAN-CVE-2019-14535

A divide-by-zero error exists in the SeekIndex function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted WMV file...

7.8CVSS7.5AI score0.01484EPSS
Exploits0References1
OSV
OSV
added 2019/08/29 6:15 p.m.2 views

DEBIAN-CVE-2019-14498

A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted CAF file...

7.8CVSS7.5AI score0.01517EPSS
Exploits0References1
Prion
Prion
added 2019/08/29 6:15 p.m.14 views

Design/Logic Flaw

A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted CAF file...

6.8CVSS7.7AI score0.01517EPSS
Exploits0References8Affected Software2
Prion
Prion
added 2019/08/29 6:15 p.m.14 views

Heap overflow

The xiphSplitHeaders function in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 does not check array bounds properly. As a result, a heap-based buffer over-read can be triggered via a crafted .ogg file...

6.8CVSS7.8AI score0.01504EPSS
Exploits0References8Affected Software2
Prion
Prion
added 2019/08/29 6:15 p.m.21 views

Input validation

A divide-by-zero error exists in the SeekIndex function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted WMV file...

6.8CVSS7.7AI score0.01484EPSS
Exploits0References8Affected Software2
CVE
CVE
added 2019/08/29 5:35 p.m.169 views

CVE-2019-14498

CVE-2019-14498 affects VLC media player 3.0.7.1 and earlier, with a divide-by-zero vulnerability in the demux/caf.c Control function that can trigger a fault via crafted CAF files. The issue resides in the CAF demuxer code path and is associated with a numeric/division-by-zero condition. Multiple...

7.8CVSS8.1AI score0.01517EPSS
Exploits0References8Affected Software1
AlpineLinux
AlpineLinux
added 2019/08/29 5:35 p.m.35 views

CVE-2019-14498

A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted CAF file...

7.8CVSS8.4AI score0.01517EPSS
Exploits0
CVE
CVE
added 2019/08/29 5:33 p.m.194 views

CVE-2019-14438

CVE-2019-14438 affects VideoLAN VLC media player 3.0.7.1 and earlier, due to a heap-based buffer over-read in xiph_PackHeaders() within modules/demux/xiph.h, exploitable via crafted .ogg files. Multiple connected advisories confirm the issue and track fixes to VLC 3.0.8 (and related package updat...

7.8CVSS8.2AI score0.01818EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2019/08/29 5:30 p.m.22 views

CVE-2019-14437

The xiphSplitHeaders function in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 does not check array bounds properly. As a result, a heap-based buffer over-read can be triggered via a crafted .ogg file...

7.8CVSS7.7AI score0.01504EPSS
Exploits0
Rows per page
Query Builder