KLA11509
Multiple vulnerabilities in VLC media player
Updated: 06/26/2019
Detect date
?
06/13/2019
Severity
?
Critical
Description

Multiple vulnerabilities were found in VLC media player. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions.

Below is a complete list of vulnerabilities:

  1. Heap buffer overflow vulnerability in VLC media player can be exploited to cause denial of service;
  2. Double free vulnerability in VLC media player can be exploited to bypass security restrictions.
Affected products

VLC media player version 3.0.6 and earlier

Solution

Update to the latest version
Download VLC medial player

Original advisories

Security Advisory 1901

Impacts
?
DoS 
[?]

SB 
[?]
Related products
VLC media player
CVE-IDS
?
CVE-2019-54396.5High
CVE-2019-128749.8Critical