Lucene search
K

15 matches found

Veracode
Veracode
added 2020/09/21 6:36 a.m.26 views

Information Disclosure

vlc:bionic is vulnerable to information disclosure. The CAF demuxer in modules/demux/caf.c in VideoLAN VLC media player 3.0.4 may read memory from an uninitialized pointer when processing magic cookies in CAF files, because a ReadKukiChunk cast converts a return value to an unsigned int even if...

9.1CVSS3.5AI score0.03916EPSS
Exploits1References10Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/07/26 12:0 a.m.33 views

Ubuntu 18.04 LTS : VLC vulnerabilities (USN-4074-1)

The remote Ubuntu 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4074-1 advisory. It was discovered that the VLC CAF demuxer incorrectly handled certain files. If a user were tricked into opening a specially-crafted CAF file, a remote...

9.8CVSS8.5AI score0.05295EPSS
Exploits1References5
Ubuntu
Ubuntu
added 2019/07/25 11:57 a.m.179 views

USN-4074-1: VLC vulnerabilities

It was discovered that the VLC CAF demuxer incorrectly handled certain files. If a user were tricked into opening a specially-crafted CAF file, a remote attacker could use this issue to cause VLC to crash, resulting in a denial of service. This issue only affected Ubuntu 18.04 LTS. CVE-2018-19857...

9.8CVSS8.3AI score0.05295EPSS
Exploits1
OSV
OSV
added 2019/07/25 11:57 a.m.1 views

USN-4074-1 vlc vulnerabilities

It was discovered that the VLC CAF demuxer incorrectly handled certain files. If a user were tricked into opening a specially-crafted CAF file, a remote attacker could use this issue to cause VLC to crash, resulting in a denial of service. This issue only affected Ubuntu 18.04 LTS. CVE-2018-19857...

9.8CVSS7.4AI score0.05295EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2019/01/14 12:0 a.m.26 views

Debian DSA-4366-1 : vlc - security update

An integer underflow was discovered in the CAF demuxer of the VLC media player. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-4366. The text itself is copyright C Software in the Public Interest, Inc...

9.1CVSS8.2AI score0.03916EPSS
Exploits1References4
Debian
Debian
added 2019/01/12 12:35 p.m.230 views

[SECURITY] [DSA 4366-1] vlc security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4366-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 12, 2019 https://www.debian.org/security/faq -...

9.1CVSS8.5AI score0.03916EPSS
Exploits1
OpenVAS
OpenVAS
added 2019/01/11 12:0 a.m.49 views

Debian: Security Advisory (DSA-4366-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS9.3AI score0.03916EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2018/12/17 12:0 a.m.25 views

VLC Media Player CAF Demuxer Integer Underflow Vulnerability - Windows

VLC media player is prone to an integer underflow vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.1CVSS9.2AI score0.03916EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2018/12/17 12:0 a.m.29 views

VLC Media Player CAF Demuxer Integer Underflow Vulnerability - Mac OS X

VLC media player is prone to an integer underflow vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.1CVSS9.2AI score0.03916EPSS
Exploits1References1
OSV
OSV
added 2018/12/05 11:29 a.m.21 views

CVE-2018-19857

The CAF demuxer in modules/demux/caf.c in VideoLAN VLC media player 3.0.4 may read memory from an uninitialized pointer when processing magic cookies in CAF files, because a ReadKukiChunk cast converts a return value to an unsigned int even if that value is negative. This could result in a denial...

9.1CVSS6.4AI score
Exploits0References9
Prion
Prion
added 2018/12/05 11:29 a.m.18 views

Design/Logic Flaw

The CAF demuxer in modules/demux/caf.c in VideoLAN VLC media player 3.0.4 may read memory from an uninitialized pointer when processing magic cookies in CAF files, because a ReadKukiChunk cast converts a return value to an unsigned int even if that value is negative. This could result in a denial...

6.4CVSS8.7AI score0.03916EPSS
Exploits1References9Affected Software2
CVE
CVE
added 2018/12/05 11:0 a.m.244 views

CVE-2018-19857

CVE-2018-19857 affects VideoLAN VLC media player 3.0.4 where the CAF demuxer in modules/demux/caf.c may read memory from an uninitialized pointer while processing CAF magic cookies due to a ReadKukiChunk() cast converting a negative value to unsigned int. This can cause denial of service and/or a...

9.1CVSS7.9AI score0.03916EPSS
Exploits1References9Affected Software1
Debian CVE
Debian CVE
added 2018/12/05 11:0 a.m.22 views

CVE-2018-19857

The CAF demuxer in modules/demux/caf.c in VideoLAN VLC media player 3.0.4 may read memory from an uninitialized pointer when processing magic cookies in CAF files, because a ReadKukiChunk cast converts a return value to an unsigned int even if that value is negative. This could result in a denial...

9.1CVSS9.2AI score0.03916EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2018/12/05 12:0 a.m.22 views

CVE-2018-19857

The CAF demuxer in modules/demux/caf.c in VideoLAN VLC media player 3.0.4 may read memory from an uninitialized pointer when processing magic cookies in CAF files, because a ReadKukiChunk cast converts a return value to an unsigned int even if that value is negative. This could result in a denial...

9.1CVSS7.2AI score0.03916EPSS
Exploits1References3
OSV
OSV
added 2018/12/05 12:0 a.m.4 views

UBUNTU-CVE-2018-19857

The CAF demuxer in modules/demux/caf.c in VideoLAN VLC media player 3.0.4 may read memory from an uninitialized pointer when processing magic cookies in CAF files, because a ReadKukiChunk cast converts a return value to an unsigned int even if that value is negative. This could result in a denial...

9.1CVSS7.3AI score0.03916EPSS
Exploits1References4
Rows per page
Query Builder