CVE-2019-14437

Published: Aug 29, 2019Modified: Nov 21, 2024

7.8

Vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

The xiph_SplitHeaders function in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 does not check array bounds properly. As a result, a heap-based buffer over-read can be triggered via a crafted .ogg file.

Affected (3)

Products: Videolan: Vlc Media Player · Debian: Debian Linux

1 product

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Videolan Vlc Media Player	Version 3.0.7.1

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 10.0
Debian Debian Linux	Version 9.0

Related CWEs

CWE-125

Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

CWE-129

Improper Validation of Array Index

The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.

References (16)

http://git.videolan.org/?p=vlc.git&a=search&h=refs%2Fheads%2Fmaster&st=commit&s=cve-2019

Source: cve@mitre.org

Patch

http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html

Source: cve@mitre.org

https://seclists.org/bugtraq/2019/Aug/36

Source: cve@mitre.org

Mailing ListThird Party Advisory

https://security.gentoo.org/glsa/201909-02

Source: cve@mitre.org

https://usn.ubuntu.com/4131-1/

Source: cve@mitre.org

https://www.debian.org/security/2019/dsa-4504

Source: cve@mitre.org

Third Party Advisory

https://www.videolan.org/security/sb-vlc308.html

Source: cve@mitre.org

PatchVendor Advisory

http://git.videolan.org/?p=vlc.git&a=search&h=refs%2Fheads%2Fmaster&st=commit&s=cve-2019