The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of VLC

VLC: integer overflow via ReadKukiChunk
An attacker can generate an integer overflow via ReadKukiChunk() of VLC, in order to trigger a denial of service, and possibly to run code...
CVE-2018-19857, DSA-4366-1, openSUSE-SU-2019:1840-1, openSUSE-SU-2019:1897-1, openSUSE-SU-2019:1909-1, openSUSE-SU-2019:2015-1, USN-4074-1, VIGILANCE-VUL-27966
VLC: use after free via MKV
An attacker can force the usage of a freed memory area via MKV of VLC, in order to trigger a denial of service, and possibly to run code...
CVE-2018-11529, DSA-4251-1, VIGILANCE-VUL-26684
VideoLAN VLC: memory corruption via vlc_demux_chained_Delete
An attacker can generate a memory corruption via vlc_demux_chained_Delete() of VideoLAN VLC, in order to trigger a denial of service, and possibly to run code...
CERTFR-2018-AVI-323, CVE-2018-11516, VIGILANCE-VUL-26257
VLC: buffer overflow via ParseJSS Double Increment
An attacker can generate a buffer overflow via ParseJSS() Double Increment of VLC, in order to trigger a denial of service, and possibly to run code...
CVE-2017-8311, DSA-3899-1, VIGILANCE-VUL-22812
VideoLAN VLC: use after free via MP4
An attacker can force the usage of a freed memory area via MP4 of VideoLAN VLC, in order to trigger a denial of service, and possibly to run code...
CVE-2017-17670, DSA-4203-1, VIGILANCE-VUL-24780
VideoLAN VLC: buffer overflow
An attacker can generate a buffer overflow of VideoLAN VLC, in order to trigger a denial of service, and possibly to run code...
18467, CVE-2017-10699, DSA-4045-1, VIGILANCE-VUL-23120
VideoLAN VLC: memory corruption via libflac_plugin.dll
An attacker can generate a memory corruption via libflac_plugin.dll of VideoLAN VLC, in order to trigger a denial of service, and possibly to run code...
CVE-2017-9300, DSA-4045-1, openSUSE-SU-2017:2595-1, openSUSE-SU-2017:2597-1, VIGILANCE-VUL-22859
VideoLAN VLC: out-of-bounds memory reading via libmpgatofixed32_plugin.dll
An attacker can force a read at an invalid address via libmpgatofixed32_plugin.dll of VideoLAN VLC, in order to trigger a denial of service, or to obtain sensitive information...
CVE-2017-9301, VIGILANCE-VUL-22858
VLC: out-of-bounds memory reading via ParseJSS Read
An attacker can force a read at an invalid address via ParseJSS() of VLC, in order to trigger a denial of service, or to obtain sensitive information...
CVE-2017-8313, DSA-3899-1, VIGILANCE-VUL-22813
VLC: out-of-bounds memory reading via CreateHtmlSubtitle
An attacker can force a read at an invalid address via CreateHtmlSubtitle() of VLC, in order to trigger a denial of service, or to obtain sensitive information...
CVE-2017-8310, DSA-3899-1, VIGILANCE-VUL-22811
Our database contains other pages. You can request a free trial to read them.

Display information about VLC: