16 matches found
Linux Distros Unpatched Vulnerability : CVE-2019-14778
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The mkv::virtualsegmentc::seek method of demux/mkv/virtualsegment.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free. CVE-2019-14778 Note that Nessus...
gstreamer-plugins-good: Potential heap overwrite in mkv demuxing using HEADERSTRIP decompression
A flaw was found in GStreamer. An integer overflow can lead to a heap-based buffer overflow in the mkv demuxer when processing a specially crafted Matroska/WebM file using HEADERSTRIP decompression. This vulnerability can result in application crash, memory corruption, and code execution...
SUSE CVE-2019-14778
The mkv::virtualsegmentc::seek method of demux/mkv/virtualsegment.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free...
CVE-2022-1924
A flaw was found in GStreamer. An integer overflow can lead to a heap-based buffer overflow in the mkv demuxer when processing a specially crafted Matroska/WebM file using lzo decompression. This vulnerability can result in application crash, memory corruption, and code execution...
CVE-2022-1925
A flaw was found in GStreamer. An integer overflow can lead to a heap-based buffer overflow in the mkv demuxer when processing a specially crafted Matroska/WebM file using HEADERSTRIP decompression. This vulnerability can result in application crash, memory corruption, and code execution...
CVE-2022-1923
A flaw was found in GStreamer. An integer overflow can lead to a heap-based buffer overflow in the mkv demuxer when processing a specially crafted Matroska/WebM file using bzip decompression. This vulnerability can result in application crash, memory corruption, and code execution...
CVE-2022-1922
A flaw was found in GStreamer. An integer overflow can lead to a heap-based buffer overflow in the mkv demuxer when processing a specially crafted Matroska/WebM file using zlib decompression. This vulnerability can result in application crash, memory corruption, and code execution...
CVE-2022-1920
A flaw was found in GStreamer. An integer overflow can lead to a heap-based buffer overflow in the mkv demuxer when processing a specially crafted Matroska file. This vulnerability can result in application crash, memory corruption, and code execution...
OESA-2022-1736 gstreamer1-plugins-good security update
GStreamer is a streaming media framework, based on graphs of filters which operate on media data. Applications using this library can do anything from real-time sound processing to playing videos, and just about anything else media-related. Its plugin-based architecture means that new data types ...
UBUNTU-CVE-2019-14778
The mkv::virtualsegmentc::seek method of demux/mkv/virtualsegment.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free...
VideoLAN VLC Media Player MKV Demuxer Code Execution
Added: 06/27/2011 CVE: CVE-2011-0531 BID: 46060 OSVDB: 70698 Background VLC media player is a media player supporting various audio and video formats for multiple platforms. Problem VideoLan VLC 1.1.6.1 and earlier are vulnerable to a remote code execution vulnerability as a result of insufficien...
Memory corruption
demux/mkv/mkv.hpp in the MKV demuxer plugin in VideoLAN VLC media player 1.1.6.1 and earlier allows remote attackers to cause a denial of service crash and execute arbitrary commands via a crafted MKV WebM or Matroska file that triggers memory corruption, related to "class mismatching" and the...
CVE-2011-0531
demux/mkv/mkv.hpp in the MKV demuxer plugin in VideoLAN VLC media player 1.1.6.1 and earlier allows remote attackers to cause a denial of service crash and execute arbitrary commands via a crafted MKV WebM or Matroska file that triggers memory corruption, related to "class mismatching" and the...
CVE-2011-0531
demux/mkv/mkv.hpp in the MKV demuxer plugin in VideoLAN VLC media player 1.1.6.1 and earlier allows remote attackers to cause a denial of service crash and execute arbitrary commands via a crafted MKV WebM or Matroska file that triggers memory corruption, related to "class mismatching" and the...
CVE-2011-0531
demux/mkv/mkv.hpp in the MKV demuxer plugin in VideoLAN VLC media player 1.1.6.1 and earlier allows remote attackers to cause a denial of service crash and execute arbitrary commands via a crafted MKV WebM or Matroska file that triggers memory corruption, related to "class mismatching" and the...
vlc -- Insufficient input validation in MKV demuxer
VLC team reports: When parsing an invalid MKV Matroska or WebM file, input validation are insufficient...