#VU19983 Out-of-bounds read in VLC Media Player - CVE-2019-13962


| Updated: 2019-09-12

Vulnerability identifier: #VU19983

Vulnerability risk: Low

CVSSv4.0: 1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2019-13962

CWE-ID: CWE-125

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
VLC Media Player
Client/Desktop applications / Multimedia software

Vendor: VideoLAN

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to heap-based buffer over-read because the application does not properly validate the width and height properties in lavc_CopyPicture function in modules/codec/avcodec/video.c. A remote attacker can perform a denial of service attack.

Mitigation
Install update from vendor's website.

Vulnerable software versions

VLC Media Player: 3.0.2 - 3.0.7.1

External links
https://git.videolan.org/?p=vlc/vlc-3.0.git;a=commit;h=2b4f9d0b0e0861f262c90e9b9b94e7d53b864509
https://trac.videolan.org/vlc/ticket/22240
https://www.videolan.org/security/sb-vlc308.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


OpenSUSE Linux update for vlc
OpenSUSE Linux update for vlc
Gentoo update for VLC
OpenSUSE Linux update for vlc
Out-of-bounds read in vlc (Alpine package)
OpenSUSE Linux update for vlc
OpenSUSE Linux update for vlc
OpenSUSE Linux update for vlc
Information disclosure in VLC Media Player