Debian Vlc vulnerabilities

CVE-2019-14778 [HIGH] CVE-2019-14778: vlc - The mkv::virtual_segment_c::seek method of demux/mkv/virtual_segment.cpp in Vide... The mkv::virtual_segment_c::seek method of demux/mkv/virtual_segment.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free. Scope: local bookworm: resolved (fixed in 3.0.8-1) bullseye: resolved (fixed in 3.0.8-1) forky: resolved (fixed in 3.0.8-1) sid: resolved (fixed in 3.0.8-1) trixie: resolved (fixed in 3.0.8-1)

CVE-2019-14437 [HIGH] CVE-2019-14437: vlc - The xiph_SplitHeaders function in modules/demux/xiph.h in VideoLAN VLC media pla... The xiph_SplitHeaders function in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 does not check array bounds properly. As a result, a heap-based buffer over-read can be triggered via a crafted .ogg file. Scope: local bookworm: resolved (fixed in 3.0.8-1) bullseye: resolved (fixed in 3.0.8-1) forky: resolved (fixed in 3.0.8-1) sid: resolved (fixed in 3.0.8-1)

CVE-2019-13602 [HIGH] CVE-2019-13602: vlc - An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in Video... An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in VideoLAN VLC media player through 3.0.7.1 allows remote attackers to cause a denial of service (heap-based buffer overflow and crash) or possibly have unspecified other impact via a crafted .mp4 file. Scope: local bookworm: resolved (fixed in 3.0.7.1-2) bullseye: resolved (fixed in 3.0.7.1-2) for

CVE-2019-19721 [HIGH] CVE-2019-19721: vlc - An off-by-one error in the DecodeBlock function in codec/sdl_image.c in VideoLAN... An off-by-one error in the DecodeBlock function in codec/sdl_image.c in VideoLAN VLC media player before 3.0.9 allows remote attackers to cause a denial of service (memory corruption) via a crafted image file. NOTE: this may be related to the SDL_Image product. Scope: local bookworm: resolved (fixed in 3.0.9.2-1) bullseye: resolved (fixed in 3.0.9.2-1) forky: resolved (

CVE-2019-14438 [HIGH] CVE-2019-14438: vlc - A heap-based buffer over-read in xiph_PackHeaders() in modules/demux/xiph.h in V... A heap-based buffer over-read in xiph_PackHeaders() in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer over-read via a crafted .ogg file. Scope: local bookworm: resolved (fixed in 3.0.8-1) bullseye: resolved (fixed in 3.0.8-1) forky: resolved (fixed in 3.0.8-1) sid: resolved (fixed in 3.0.8-1) trixie: reso

CVE-2019-14777 [HIGH] CVE-2019-14777: vlc - The Control function of demux/mkv/mkv.cpp in VideoLAN VLC media player 3.0.7.1 h... The Control function of demux/mkv/mkv.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free. Scope: local bookworm: resolved (fixed in 3.0.8-1) bullseye: resolved (fixed in 3.0.8-1) forky: resolved (fixed in 3.0.8-1) sid: resolved (fixed in 3.0.8-1) trixie: resolved (fixed in 3.0.8-1)

CVE-2019-14776 [HIGH] CVE-2019-14776: vlc - A heap-based buffer over-read exists in DemuxInit() in demux/asf/asf.c in VideoL... A heap-based buffer over-read exists in DemuxInit() in demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 via a crafted .mkv file. Scope: local bookworm: resolved (fixed in 3.0.8-1) bullseye: resolved (fixed in 3.0.8-1) forky: resolved (fixed in 3.0.8-1) sid: resolved (fixed in 3.0.8-1) trixie: resolved (fixed in 3.0.8-1)

CVE-2019-14498 [HIGH] CVE-2019-14498: vlc - A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN... A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted CAF file. Scope: local bookworm: resolved (fixed in 3.0.8-1) bullseye: resolved (fixed in 3.0.8-1) forky: resolved (fixed in 3.0.8-1) sid: resolved (fixed in 3.0.8-1) trixie: resolved (fixed in 3.0.8-1)

CVE-2019-14970 [HIGH] CVE-2019-14970: vlc - A vulnerability in mkv::event_thread_t in VideoLAN VLC media player 3.0.7.1 allo... A vulnerability in mkv::event_thread_t in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer overflow via a crafted .mkv file. Scope: local bookworm: resolved (fixed in 3.0.8-1) bullseye: resolved (fixed in 3.0.8-1) forky: resolved (fixed in 3.0.8-1) sid: resolved (fixed in 3.0.8-1) trixie: resolved (fixed in 3.0.8-1)

CVE-2019-14533 [HIGH] CVE-2019-14533: vlc - The Control function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 has... The Control function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 has a use-after-free. Scope: local bookworm: resolved (fixed in 3.0.8-1) bullseye: resolved (fixed in 3.0.8-1) forky: resolved (fixed in 3.0.8-1) sid: resolved (fixed in 3.0.8-1) trixie: resolved (fixed in 3.0.8-1)

CVE-2019-14535 [HIGH] CVE-2019-14535: vlc - A divide-by-zero error exists in the SeekIndex function of demux/asf/asf.c in Vi... A divide-by-zero error exists in the SeekIndex function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted WMV file. Scope: local bookworm: resolved (fixed in 3.0.8-1) bullseye: resolved (fixed in 3.0.8-1) forky: resolved (fixed in 3.0.8-1) sid: resolved (fixed in 3.0.8-1) trixie: resolved (fixed in 3.0.8-1)

CVE-2019-5459 [HIGH] CVE-2019-5459: vlc - An Integer underflow in VLC Media Player versions < 3.0.7 leads to an out-of-ban... An Integer underflow in VLC Media Player versions < 3.0.7 leads to an out-of-band read. Scope: local bookworm: resolved (fixed in 3.0.7-1) bullseye: resolved (fixed in 3.0.7-1) forky: resolved (fixed in 3.0.7-1) sid: resolved (fixed in 3.0.7-1) trixie: resolved (fixed in 3.0.7-1)

CVE-2019-5460 [MEDIUM] CVE-2019-5460: vlc - Double Free in VLC versions <= 3.0.6 leads to a crash. Double Free in VLC versions <= 3.0.6 leads to a crash. Scope: local bookworm: resolved (fixed in 3.0.7-1) bullseye: resolved (fixed in 3.0.7-1) forky: resolved (fixed in 3.0.7-1) sid: resolved (fixed in 3.0.7-1) trixie: resolved (fixed in 3.0.7-1)

CVE-2019-5439 [MEDIUM] CVE-2019-5439: vlc - A Buffer Overflow in VLC Media Player < 3.0.7 causes a crash which can possibly ... A Buffer Overflow in VLC Media Player < 3.0.7 causes a crash which can possibly be further developed into a remote code execution exploit. Scope: local bookworm: resolved (fixed in 3.0.7-1) bullseye: resolved (fixed in 3.0.7-1) forky: resolved (fixed in 3.0.7-1) sid: resolved (fixed in 3.0.7-1) trixie: resolved (fixed in 3.0.7-1)

CVE-2019-14534 [MEDIUM] CVE-2019-14534: vlc - In VideoLAN VLC media player 3.0.7.1, there is a NULL pointer dereference at the... In VideoLAN VLC media player 3.0.7.1, there is a NULL pointer dereference at the function SeekPercent of demux/asf/asf.c that will lead to a denial of service attack. Scope: local bookworm: resolved (fixed in 3.0.8-1) bullseye: resolved (fixed in 3.0.8-1) forky: resolved (fixed in 3.0.8-1) sid: resolved (fixed in 3.0.8-1) trixie: resolved (fixed in 3.0.8-1)

CVE-2019-13962 [CRITICAL] CVE-2019-13962: vlc - lavc_CopyPicture in modules/codec/avcodec/video.c in VideoLAN VLC media player t... lavc_CopyPicture in modules/codec/avcodec/video.c in VideoLAN VLC media player through 3.0.7 has a heap-based buffer over-read because it does not properly validate the width and height. Scope: local bookworm: resolved (fixed in 3.0.8-1) bullseye: resolved (fixed in 3.0.8-1) forky: resolved (fixed in 3.0.8-1) sid: resolved (fixed in 3.0.8-1) trixie: resolved (fixed

CVE-2018-19857 [CRITICAL] CVE-2018-19857: vlc - The CAF demuxer in modules/demux/caf.c in VideoLAN VLC media player 3.0.4 may re... The CAF demuxer in modules/demux/caf.c in VideoLAN VLC media player 3.0.4 may read memory from an uninitialized pointer when processing magic cookies in CAF files, because a ReadKukiChunk() cast converts a return value to an unsigned int even if that value is negative. This could result in a denial of service and/or a potential infoleak. Scope: local bookworm: resol

CVE-2018-11516 [HIGH] CVE-2018-11516: vlc - The vlc_demux_chained_Delete function in input/demux_chained.c in VideoLAN VLC m... The vlc_demux_chained_Delete function in input/demux_chained.c in VideoLAN VLC media player 3.0.1 allows remote attackers to cause a denial of service (heap corruption and application crash) or possibly have unspecified other impact via a crafted .swf file. Scope: local bookworm: resolved (fixed in 3.0.2-1) bullseye: resolved (fixed in 3.0.2-1) forky: resolved (fixed in

CVE-2018-11529 [HIGH] CVE-2018-11529: vlc - VideoLAN VLC media player 2.2.x is prone to a use after free vulnerability which... VideoLAN VLC media player 2.2.x is prone to a use after free vulnerability which an attacker can leverage to execute arbitrary code via crafted MKV files. Failed exploit attempts will likely result in denial of service conditions. Scope: local bookworm: resolved (fixed in 3.0.3-1-1) bullseye: resolved (fixed in 3.0.3-1-1) forky: resolved (fixed in 3.0.3-1-1) sid: resolv

CVE-2017-10699 [CRITICAL] CVE-2017-10699: vlc - avcodec 2.2.x, as used in VideoLAN VLC media player 2.2.7-x before 2017-06-29, a... avcodec 2.2.x, as used in VideoLAN VLC media player 2.2.7-x before 2017-06-29, allows out-of-bounds heap memory write due to calling memcpy() with a wrong size, leading to a denial of service (application crash) or possibly code execution. Scope: local bookworm: resolved (fixed in 2.2.6-3) bullseye: resolved (fixed in 2.2.6-3) forky: resolved (fixed in 2.2.6-3) sid: