783 matches found
VideoLAN VLC media player code issue vulnerability
VideoLAN VLC media player is a free, open source cross-platform multimedia player also a multimedia framework organized by VideoLAN France. The product supports the playback of a variety of media files, CD-ROMs, etc., a variety of audio and video formats WMV, MP3, etc. and so on. A code issue...
VideoLAN VLC media player integer overflow vulnerability
VideoLAN VLC media player is a free, open source cross-platform multimedia player also a multimedia framework organized by VideoLAN France. The product supports the playback of a variety of media files, CD-ROMs, etc., a variety of audio and video formats WMV, MP3, etc. and so on. An integer...
Update: VLC Media Player Plagued By Unpatched Critical RCE Flaw
UPDATE After a German security agency reported a critical vulnerability existed in VLC open-source media player that could enable remote code execution and other malicious actions, the developers of VLC said that the media player is not vulnerable. The VLC media player, developed by the VideoLAN...
Heap overflow
lavcCopyPicture in modules/codec/avcodec/video.c in VideoLAN VLC media player through 3.0.7 has a heap-based buffer over-read because it does not properly validate the width and height...
CVE-2019-13962
CVE-2019-13962 affects VLC
CVE-2019-13962
lavcCopyPicture in modules/codec/avcodec/video.c in VideoLAN VLC media player through 3.0.7 has a heap-based buffer over-read because it does not properly validate the width and height...
UBUNTU-CVE-2019-13962
lavcCopyPicture in modules/codec/avcodec/video.c in VideoLAN VLC media player through 3.0.7 has a heap-based buffer over-read because it does not properly validate the width and height...
ALPINE-CVE-2019-13615
libebml before 1.3.6, as used in the MKV module in VideoLAN VLC Media Player binaries before 3.0.3, has a heap-based buffer over-read in EbmlElement::FindNextElement...
Heap overflow
libebml before 1.3.6, as used in the MKV module in VideoLAN VLC Media Player binaries before 3.0.3, has a heap-based buffer over-read in EbmlElement::FindNextElement...
CVE-2019-13615
libebml before 1.3.6, as used in the MKV module in VideoLAN VLC Media Player binaries before 3.0.3, has a heap-based buffer over-read in EbmlElement::FindNextElement...
CVE-2019-12874
CVE-2019-12874 affects VLC media player 3.x up to 3.0.7. The Matroska demuxer’s MKV parser has a double free in zlib_decompress_extra, with related MKV processing flaws that can, per advisory texts, lead to a crash or possibly arbitrary code execution. Some sources also describe related DoS risk....
VLC zlib_decompress_extra Double Free Vulnerability
VLC media player is a free and open-source portable cross-platform media player software developed by the VideoLAN project. VLC is available for desktop operating systems and mobile platforms, such as Android, iOS, iPadOS, Wizen, Windows 10 Mobile, and Windows Phone. It is also available on digit...
UBUNTU-CVE-2019-12874
An issue was discovered in zlibdecompressextra in modules/demux/mkv/util.cpp in VideoLAN VLC media player 3.x through 3.0.7. The Matroska demuxer, while parsing a malformed MKV file type, has a double free...
VideoLAN VLC media player buffer overflow vulnerability (CNVD-2019-25509)
VideoLAN VLC media player is a free, open source cross-platform multimedia player also a multimedia framework organized by VideoLAN France. The product supports the playback of a variety of media files, CD-ROMs, etc., a variety of audio and video formats WMV, MP3, etc. and so on. A buffer overflo...
UBUNTU-CVE-2019-5439
A Buffer Overflow in VLC Media Player 3.0.7 causes a crash which can possibly be further developed into a remote code execution exploit...
VLC Player Gets Patched for Two High-Severity Bugs
Maintainers of the popular open-source VLC media player patched two high-severity bugs Friday. The flaws were an out-of-bound write vulnerability and a stack-buffer-overflow bug. Developers behind the software, VideoLAN, said the patches were two of 33 fixes being pushed out to the media player a...
The vulnerability of the ReadRealIndex function in the Real demuxer plugin of the VideoLAN VLC media player allows a hacker to execute arbitrary code.
The vulnerability of the ReadRealIndex function in the Real demuxer plugin of the VideoLAN VLC media player is due to a numerical overflow that causes a buffer overflow. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created malicious RealMedia .rm fi...
CVE-2018-19937
A local, authenticated attacker can bypass the passcode in the VideoLAN VLC media player app before 3.1.5 for iOS by opening a URL and turning the phone...
CVE-2018-19937
A local, authenticated attacker can bypass the passcode in the VideoLAN VLC media player app before 3.1.5 for iOS by opening a URL and turning the phone...
CVE-2018-19937
A local, authenticated attacker can bypass the passcode in the VideoLAN VLC media player app before 3.1.5 for iOS by opening a URL and turning the phone...