Debian Vlc vulnerabilities

CVE-2025-51602 [MEDIUM] CVE-2025-51602: vlc - mmstu.c in VideoLAN VLC media player before 3.0.22 allows an out-of-bounds read ... mmstu.c in VideoLAN VLC media player before 3.0.22 allows an out-of-bounds read and denial of service via a crafted 0x01 response from an MMS server. Scope: local bookworm: resolved (fixed in 3.0.22-0+deb12u1) bullseye: resolved (fixed in 3.0.23-0+deb11u1) forky: resolved (fixed in 3.0.22-1) sid: resolved (fixed in 3.0.22-1) trixie: resolved (fixed in 3.0.22-0+deb13u1

CVE-2024-46461 [HIGH] CVE-2024-46461: vlc - VLC media player 3.0.20 and earlier is vulnerable to denial of service through a... VLC media player 3.0.20 and earlier is vulnerable to denial of service through an integer overflow which could be triggered with a maliciously crafted mms stream (heap based overflow). If successful, a malicious third party could trigger either a crash of VLC or an arbitrary code execution with the target user's privileges. Scope: local bookworm: resolved (fixed in 3.0.

CVE-2023-47359 [CRITICAL] CVE-2023-47359: vlc - Videolan VLC prior to version 3.0.20 contains an incorrect offset read that lead... Videolan VLC prior to version 3.0.20 contains an incorrect offset read that leads to a Heap-Based Buffer Overflow in function GetPacket() and results in a memory corruption. Scope: local bookworm: resolved (fixed in 3.0.20-0+deb12u1) bullseye: resolved (fixed in 3.0.20-0+deb11u1) forky: resolved (fixed in 3.0.20-1) sid: resolved (fixed in 3.0.20-1) trixie: resolved

CVE-2023-47360 [HIGH] CVE-2023-47360: vlc - Videolan VLC prior to version 3.0.20 contains an Integer underflow that leads to... Videolan VLC prior to version 3.0.20 contains an Integer underflow that leads to an incorrect packet length. Scope: local bookworm: resolved (fixed in 3.0.20-0+deb12u1) bullseye: resolved (fixed in 3.0.20-0+deb11u1) forky: resolved (fixed in 3.0.20-1) sid: resolved (fixed in 3.0.20-1) trixie: resolved (fixed in 3.0.20-1)

CVE-2023-46814 [HIGH] CVE-2023-46814: vlc - A binary hijacking vulnerability exists within the VideoLAN VLC media player bef... A binary hijacking vulnerability exists within the VideoLAN VLC media player before 3.0.19 on Windows. The uninstaller attempts to execute code with elevated privileges out of a standard user writable location. Standard users may use this to gain arbitrary code execution as SYSTEM. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie:

CVE-2022-41325 [HIGH] CVE-2022-41325: vlc - An integer overflow in the VNC module in VideoLAN VLC Media Player through 3.0.1... An integer overflow in the VNC module in VideoLAN VLC Media Player through 3.0.17.4 allows attackers, by tricking a user into opening a crafted playlist or connecting to a rogue VNC server, to crash VLC or execute code under some conditions. Scope: local bookworm: resolved (fixed in 3.0.18-1) bullseye: resolved (fixed in 3.0.18-0+deb11u1) forky: resolved (fixed in 3.0.1

CVE-2021-25802 [HIGH] CVE-2021-25802: vlc - A buffer overflow vulnerability in the AVI_ExtractSubtitle component of VideoLAN... A buffer overflow vulnerability in the AVI_ExtractSubtitle component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause an out-of-bounds read via a crafted .avi file. Scope: local bookworm: resolved (fixed in 3.0.12-1) bullseye: resolved (fixed in 3.0.12-1) forky: resolved (fixed in 3.0.12-1) sid: resolved (fixed in 3.0.12-1) trixie: resolved (fixed in 3.0.12

CVE-2021-25804 [HIGH] CVE-2021-25804: vlc - A NULL-pointer dereference in "Open" in avi.c of VideoLAN VLC Media Player 3.0.1... A NULL-pointer dereference in "Open" in avi.c of VideoLAN VLC Media Player 3.0.11 can a denial of service (DOS) in the application. Scope: local bookworm: resolved (fixed in 3.0.12-1) bullseye: resolved (fixed in 3.0.12-1) forky: resolved (fixed in 3.0.12-1) sid: resolved (fixed in 3.0.12-1) trixie: resolved (fixed in 3.0.12-1)

CVE-2021-25803 [HIGH] CVE-2021-25803: vlc - A buffer overflow vulnerability in the vlc_input_attachment_New component of Vid... A buffer overflow vulnerability in the vlc_input_attachment_New component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause an out-of-bounds read via a crafted .avi file. Scope: local bookworm: resolved (fixed in 3.0.12-1) bullseye: resolved (fixed in 3.0.12-1) forky: resolved (fixed in 3.0.12-1) sid: resolved (fixed in 3.0.12-1) trixie: resolved (fixed in 3

CVE-2021-25801 [HIGH] CVE-2021-25801: vlc - A buffer overflow vulnerability in the __Parse_indx component of VideoLAN VLC Me... A buffer overflow vulnerability in the __Parse_indx component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause an out-of-bounds read via a crafted .avi file. Scope: local bookworm: resolved (fixed in 3.0.12-1) bullseye: resolved (fixed in 3.0.12-1) forky: resolved (fixed in 3.0.12-1) sid: resolved (fixed in 3.0.12-1) trixie: resolved (fixed in 3.0.12-1)

CVE-2020-6072 [CRITICAL] CVE-2020-6072: libmicrodns - An exploitable code execution vulnerability exists in the label-parsing function... An exploitable code execution vulnerability exists in the label-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing compressed labels in mDNS messages, the rr_decode function's return value is not checked, leading to a double free that could be exploited to execute arbitrary code. An attacker can send an mDNS message to trigger this vulnerabilit

CVE-2020-6079 [HIGH] CVE-2020-6079: libmicrodns - An exploitable denial-of-service vulnerability exists in the resource allocation... An exploitable denial-of-service vulnerability exists in the resource allocation handling of Videolabs libmicrodns 0.1.0. When encountering errors while parsing mDNS messages, some allocated data is not freed, possibly leading to a denial-of-service condition via resource exhaustion. An attacker can send one mDNS message repeatedly to trigger this vulnerability th

CVE-2020-6071 [HIGH] CVE-2020-6071: libmicrodns - An exploitable denial-of-service vulnerability exists in the resource record-par... An exploitable denial-of-service vulnerability exists in the resource record-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing compressed labels in mDNS messages, the compression pointer is followed without checking for recursion, leading to a denial of service. An attacker can send an mDNS message to trigger this vulnerability. Scope: local forky

CVE-2020-13428 [HIGH] CVE-2020-13428: vlc - A heap-based buffer overflow in the hxxx_AnnexB_to_xVC function in modules/packe... A heap-based buffer overflow in the hxxx_AnnexB_to_xVC function in modules/packetizer/hxxx_nal.c in VideoLAN VLC media player before 3.0.11 for macOS/iOS allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a crafted H.264 Annex-B video (.avi for example) file. Scope: local bookworm: resolved (fixed in 3.0.11-1) bullseye

CVE-2020-6080 [HIGH] CVE-2020-6080: libmicrodns - An exploitable denial-of-service vulnerability exists in the resource allocation... An exploitable denial-of-service vulnerability exists in the resource allocation handling of Videolabs libmicrodns 0.1.0. When encountering errors while parsing mDNS messages, some allocated data is not freed, possibly leading to a denial-of-service condition via resource exhaustion. An attacker can send one mDNS message repeatedly to trigger this vulnerability th

CVE-2020-6073 [HIGH] CVE-2020-6073: libmicrodns - An exploitable denial-of-service vulnerability exists in the TXT record-parsing ... An exploitable denial-of-service vulnerability exists in the TXT record-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing the RDATA section in a TXT record in mDNS messages, multiple integer overflows can be triggered, leading to a denial of service. An attacker can send an mDNS message to trigger this vulnerability. Scope: local forky: resolved (

CVE-2020-6078 [HIGH] CVE-2020-6078: libmicrodns - An exploitable denial-of-service vulnerability exists in the message-parsing fun... An exploitable denial-of-service vulnerability exists in the message-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing mDNS messages in mdns_recv, the return value of the mdns_read_header function is not checked, leading to an uninitialized variable usage that eventually results in a null pointer dereference, leading to service crash. An attacker

CVE-2020-6077 [HIGH] CVE-2020-6077: libmicrodns - An exploitable denial-of-service vulnerability exists in the message-parsing fun... An exploitable denial-of-service vulnerability exists in the message-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing mDNS messages, the implementation does not properly keep track of the available data in the message, possibly leading to an out-of-bounds read that would result in a denial of service. An attacker can send an mDNS message to trigg

CVE-2020-26664 [HIGH] CVE-2020-26664: vlc - A vulnerability in EbmlTypeDispatcher::send in VideoLAN VLC media player 3.0.11 ... A vulnerability in EbmlTypeDispatcher::send in VideoLAN VLC media player 3.0.11 allows attackers to trigger a heap-based buffer overflow via a crafted .mkv file. Scope: local bookworm: resolved (fixed in 3.0.12-1) bullseye: resolved (fixed in 3.0.12-1) forky: resolved (fixed in 3.0.12-1) sid: resolved (fixed in 3.0.12-1) trixie: resolved (fixed in 3.0.12-1)

CVE-2019-12874 [CRITICAL] CVE-2019-12874: vlc - An issue was discovered in zlib_decompress_extra in modules/demux/mkv/util.cpp i... An issue was discovered in zlib_decompress_extra in modules/demux/mkv/util.cpp in VideoLAN VLC media player 3.x through 3.0.7. The Matroska demuxer, while parsing a malformed MKV file type, has a double free. Scope: local bookworm: resolved (fixed in 3.0.7-1) bullseye: resolved (fixed in 3.0.7-1) forky: resolved (fixed in 3.0.7-1) sid: resolved (fixed in 3.0.7-1) tr