Search CVE reports

Toggle filters

21 – 30 of 153 results

CVE-2019-5439

Medium priority

Some fixes available 2 of 4

A Buffer Overflow in VLC Media Player < 3.0.7 causes a crash which can possibly be further developed into a remote code execution exploit.

1 affected package

vlc

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
vlc Not affected Not affected Not affected Fixed
Show less packages

CVE-2019-19721

Low priority

Some fixes available 2 of 6

An off-by-one error in the DecodeBlock function in codec/sdl_image.c in VideoLAN VLC media player before 3.0.9 allows remote attackers to cause a denial of service (memory corruption) via a crafted image file. NOTE: this may be...

1 affected package

vlc

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
vlc Not affected Not affected Fixed
Show less packages

CVE-2019-18278

Medium priority
Not affected

When executing VideoLAN VLC media player 3.0.8 with libqt on Windows, Data from a Faulting Address controls Code Flow starting at libqt_plugin!vlc_entry_license__3_0_0f+0x00000000003b9aba. NOTE: the VideoLAN security team...

1 affected package

vlc

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
vlc Not affected
Show less packages

CVE-2019-15678

Medium priority

Some fixes available 1 of 120

TightVNC code version 1.3.10 contains heap buffer overflow in rfbServerCutText handler, which can potentially result code execution.. This attack appear to be exploitable via network connectivity.

11 affected packages

bochs, directvnc, libvncserver, ssvnc, tightvnc...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
bochs Needs evaluation Needs evaluation Needs evaluation Needs evaluation
directvnc Needs evaluation Needs evaluation Needs evaluation Needs evaluation
libvncserver Not affected Not affected Not affected Not affected
ssvnc Needs evaluation Needs evaluation Needs evaluation Needs evaluation
tightvnc Needs evaluation Needs evaluation Needs evaluation Needs evaluation
vino Not affected Not affected Not affected Not affected
veyon Needs evaluation Needs evaluation Needs evaluation Not in release
vlc Not affected Not affected Not affected Not affected
vncsnapshot Needs evaluation Needs evaluation Needs evaluation Needs evaluation
x11vnc Not affected Not affected Not affected Not affected
x2vnc Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show all 11 packages Show less packages

CVE-2019-14970

Medium priority

Some fixes available 2 of 3

A vulnerability in mkv::event_thread_t in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer overflow via a crafted .mkv file.

1 affected package

vlc

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
vlc Not affected Not affected Not affected Fixed
Show less packages

CVE-2019-14778

Medium priority

Some fixes available 2 of 3

The mkv::virtual_segment_c::seek method of demux/mkv/virtual_segment.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free.

1 affected package

vlc

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
vlc Not affected Not affected Not affected Fixed
Show less packages

CVE-2019-14777

Medium priority

Some fixes available 2 of 3

The Control function of demux/mkv/mkv.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free.

1 affected package

vlc

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
vlc Not affected Not affected Not affected Fixed
Show less packages

CVE-2019-14776

Medium priority

Some fixes available 2 of 3

A heap-based buffer over-read exists in DemuxInit() in demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 via a crafted .mkv file.

1 affected package

vlc

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
vlc Not affected Not affected Not affected Fixed
Show less packages

CVE-2019-14535

Medium priority

Some fixes available 2 of 3

A divide-by-zero error exists in the SeekIndex function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted WMV file.

1 affected package

vlc

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
vlc Not affected Not affected Not affected Fixed
Show less packages

CVE-2019-14534

Medium priority

Some fixes available 2 of 3

In VideoLAN VLC media player 3.0.7.1, there is a NULL pointer dereference at the function SeekPercent of demux/asf/asf.c that will lead to a denial of service attack.

1 affected package

vlc

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
vlc Not affected Not affected Not affected Fixed
Show less packages
  1. Previous page
  2. 1
  3. 2
  4. 3
  5. 4
  6. 5
  7. Next page
Export to JSON