Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:27 a.m.12 views

CVE-2019-12874

An issue was discovered in zlibdecompressextra in modules/demux/mkv/util.cpp in VideoLAN VLC media player 3.x through 3.0.7. The Matroska demuxer, while parsing a malformed MKV file type, has a double free...

9.8CVSS6.8AI score0.02392EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.24 views

RHEL 8 : file-type (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - file-type: a malformed MKV file could cause the file type detector to get caught in an infinite loop CVE-2022-36313...

5.5CVSS6.8AI score0.00389EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:11 a.m.5 views

SUSE CVE-2019-12874

An issue was discovered in zlibdecompressextra in modules/demux/mkv/util.cpp in VideoLAN VLC media player 3.x through 3.0.7. The Matroska demuxer, while parsing a malformed MKV file type, has a double free...

9.8CVSS7.1AI score0.02392EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2023/02/09 11:35 a.m.4 views

file-type: a malformed MKV file could cause the file type detector to get caught in an infinite loop

A flaw was found in the file-type npm package. A malformed MKV file could lead the file type detector to a denial of Service. This issue allows an attacker to input a malicious file and make the server unresponsive...

5.5CVSS6.3AI score0.00389EPSS
Exploits0References4
OSV
OSV
added 2022/07/22 12:0 a.m.2 views

GHSA-MHXJ-85R3-2X55 file-type vulnerable to Infinite Loop via malformed MKV file

An issue was discovered in the file-type package from 13.0.0 until 16.5.4 and 17.x before 17.1.3 for Node.js. A malformed MKV file could cause the file type detector to get caught in an infinite loop. This would make the application become unresponsive and could be used to cause a DoS attack when...

7.5CVSS5.8AI score0.00389EPSS
Exploits0References11
ATTACKERKB
ATTACKERKB
added 2022/07/21 4:15 p.m.2 views

CVE-2022-36313

An issue was discovered in the file-type package before 16.5.4 and 17.x before 17.1.3 for Node.js. A malformed MKV file could cause the file type detector to get caught in an infinite loop. This would make the application become unresponsive and could be used to cause a DoS attack...

5.5CVSS6.3AI score0.00389EPSS
Exploits0References5
OSV
OSV
added 2019/06/18 12:0 a.m.1 views

UBUNTU-CVE-2019-12874

An issue was discovered in zlibdecompressextra in modules/demux/mkv/util.cpp in VideoLAN VLC media player 3.x through 3.0.7. The Matroska demuxer, while parsing a malformed MKV file type, has a double free...

9.8CVSS7.4AI score0.02392EPSS
Exploits0References3
OSV
OSV
added 2013/08/09 5:34 p.m.6 views

MGASA-2013-0241 Updated vlc package fixes security vulnerability.

2.0.8 Demux: sgimb: use after free fixes 8724 https://trac.videolan.org/vlc/ticket/8724 Improve resistance and checking against malformed MKV files Check element size before reading it. This should avoid integer overflows inside the libebml causing heap buffer overflow. Since new called by the li...

6.1CVSS6.6AI score0.01583EPSS
Exploits1References2
Rows per page
Query Builder