| Bug | Description |
|---|
| TEMP-0000000-BCCC32 | vlc issues fixed in 3.0.13 |
| CVE-2024-46461 | VLC media player 3.0.20 and earlier is vulnerable to denial of service ... |
| CVE-2023-47360 | Videolan VLC prior to version 3.0.20 contains an Integer underflow tha ... |
| CVE-2023-47359 | Videolan VLC prior to version 3.0.20 contains an incorrect offset read ... |
| CVE-2023-46814 | A binary hijacking vulnerability exists within the VideoLAN VLC media ... |
| CVE-2022-41325 | An integer overflow in the VNC module in VideoLAN VLC Media Player thr ... |
| CVE-2021-25804 | A NULL-pointer dereference in "Open" in avi.c of VideoLAN VLC Media Pl ... |
| CVE-2021-25803 | A buffer overflow vulnerability in the vlc_input_attachment_New compon ... |
| CVE-2021-25802 | A buffer overflow vulnerability in the AVI_ExtractSubtitle component o ... |
| CVE-2021-25801 | A buffer overflow vulnerability in the __Parse_indx component of Video ... |
| CVE-2020-26664 | A vulnerability in EbmlTypeDispatcher::send in VideoLAN VLC media play ... |
| CVE-2020-13428 | A heap-based buffer overflow in the hxxx_AnnexB_to_xVC function in mod ... |
| CVE-2020-6080 | An exploitable denial-of-service vulnerability exists in the resource ... |
| CVE-2020-6079 | An exploitable denial-of-service vulnerability exists in the resource ... |
| CVE-2020-6078 | An exploitable denial-of-service vulnerability exists in the message-p ... |
| CVE-2020-6077 | An exploitable denial-of-service vulnerability exists in the message-p ... |
| CVE-2020-6073 | An exploitable denial-of-service vulnerability exists in the TXT recor ... |
| CVE-2020-6072 | An exploitable code execution vulnerability exists in the label-parsin ... |
| CVE-2020-6071 | An exploitable denial-of-service vulnerability exists in the resource ... |
| CVE-2019-19721 | An off-by-one error in the DecodeBlock function in codec/sdl_image.c i ... |
| CVE-2019-14970 | A vulnerability in mkv::event_thread_t in VideoLAN VLC media player 3. ... |
| CVE-2019-14778 | The mkv::virtual_segment_c::seek method of demux/mkv/virtual_segment.c ... |
| CVE-2019-14777 | The Control function of demux/mkv/mkv.cpp in VideoLAN VLC media player ... |
| CVE-2019-14776 | A heap-based buffer over-read exists in DemuxInit() in demux/asf/asf.c ... |
| CVE-2019-14535 | A divide-by-zero error exists in the SeekIndex function of demux/asf/a ... |
| CVE-2019-14534 | In VideoLAN VLC media player 3.0.7.1, there is a NULL pointer derefere ... |
| CVE-2019-14533 | The Control function of demux/asf/asf.c in VideoLAN VLC media player 3 ... |
| CVE-2019-14498 | A divide-by-zero error exists in the Control function of demux/caf.c i ... |
| CVE-2019-14438 | A heap-based buffer over-read in xiph_PackHeaders() in modules/demux/x ... |
| CVE-2019-14437 | The xiph_SplitHeaders function in modules/demux/xiph.h in VideoLAN VLC ... |
| CVE-2019-13962 | lavc_CopyPicture in modules/codec/avcodec/video.c in VideoLAN VLC medi ... |
| CVE-2019-13602 | An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4. ... |
| CVE-2019-12874 | An issue was discovered in zlib_decompress_extra in modules/demux/mkv/ ... |
| CVE-2019-5460 | Double Free in VLC versions <= 3.0.6 leads to a crash. |
| CVE-2019-5459 | An Integer underflow in VLC Media Player versions < 3.0.7 leads to an ... |
| CVE-2019-5439 | A Buffer Overflow in VLC Media Player < 3.0.7 causes a crash which can ... |
| CVE-2018-19857 | The CAF demuxer in modules/demux/caf.c in VideoLAN VLC media player 3. ... |
| CVE-2018-11529 | VideoLAN VLC media player 2.2.x is prone to a use after free vulnerabi ... |
| CVE-2018-11516 | The vlc_demux_chained_Delete function in input/demux_chained.c in Vide ... |
| CVE-2017-17670 | In VideoLAN VLC media player through 2.2.8, there is a type conversion ... |
| CVE-2017-10699 | avcodec 2.2.x, as used in VideoLAN VLC media player 2.2.7-x before 201 ... |
| CVE-2017-9301 | plugins\audio_filter\libmpgatofixed32_plugin.dll in VideoLAN VLC media ... |
| CVE-2017-9300 | plugins\codec\libflac_plugin.dll in VideoLAN VLC media player 2.2.4 al ... |
| CVE-2017-8313 | Heap out-of-bound read in ParseJSS in VideoLAN VLC before 2.2.5 due to ... |
| CVE-2017-8312 | Heap out-of-bound read in ParseJSS in VideoLAN VLC due to missing chec ... |
| CVE-2017-8311 | Potential heap based buffer overflow in ParseJSS in VideoLAN VLC befor ... |
| CVE-2017-8310 | Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2.x due ... |
| CVE-2016-5108 | Buffer overflow in the DecodeAdpcmImaQT function in modules/codec/adpc ... |
| CVE-2016-3941 | Buffer overflow in the AStreamPeekStream function in input/stream.c in ... |
| CVE-2015-5949 | VideoLAN VLC media player 2.2.1 allows remote attackers to cause a den ... |
| CVE-2014-9743 | Cross-site scripting (XSS) vulnerability in the httpd_HtmlError functi ... |
| CVE-2014-9630 | The rtp_packetize_xiph_config function in modules/stream_out/rtpfmt.c ... |
| CVE-2014-9629 | Integer overflow in the Encode function in modules/codec/schroedinger. ... |
| CVE-2014-9628 | The MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in Video ... |
| CVE-2014-9627 | The MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in Video ... |
| CVE-2014-9626 | Integer underflow in the MP4_ReadBox_String function in modules/demux/ ... |
| CVE-2014-9625 | The GetUpdateFile function in misc/update.c in the Updater in VideoLAN ... |
| CVE-2014-6440 | VideoLAN VLC media player before 2.1.5 allows remote attackers to exec ... |
| CVE-2014-3441 | codec\libpng_plugin.dll in VideoLAN VLC Media Player 2.1.3 allows remo ... |
| CVE-2014-1684 | The ASF_ReadObject_file_properties function in modules/demux/asf/libas ... |
| CVE-2013-7340 | VideoLAN VLC Media Player before 2.0.7 allows remote attackers to caus ... |
| CVE-2013-6934 | The parseRTSPRequestString function in Live Networks Live555 Streaming ... |
| CVE-2013-6933 | The parseRTSPRequestString function in Live Networks Live555 Streaming ... |
| CVE-2013-6283 | VideoLAN VLC Media Player 2.0.8 and earlier allows remote attackers to ... |
| CVE-2013-4388 | Buffer overflow in the mp4a packetizer (modules/packetizer/mpeg4audio. ... |
| CVE-2013-3565 | Multiple cross-site scripting (XSS) vulnerabilities in the HTTP Interf ... |
| CVE-2013-3564 | The web interface in VideoLAN VLC media player before 2.0.7 has no acc ... |
| CVE-2013-3245 | plugins/demux/libmkv_plugin.dll in VideoLAN VLC Media Player 2.0.7, an ... |
| CVE-2013-1954 | The ASF Demuxer (modules/demux/asf/asf.c) in VideoLAN VLC media player ... |
| CVE-2013-1868 | Multiple buffer overflows in VideoLAN VLC media player 2.0.4 and earli ... |
| CVE-2012-5855 | The SHAddToRecentDocs function in VideoLAN VLC media player 2.0.4 and ... |
| CVE-2012-5470 | libpng_plugin in VideoLAN VLC media player 2.0.3 allows remote attacke ... |
| CVE-2012-3377 | Heap-based buffer overflow in the Ogg_DecodePacket function in the OGG ... |
| CVE-2012-2396 | VideoLAN VLC media player 2.0.1 allows remote attackers to cause a den ... |
| CVE-2012-1776 | Multiple heap-based buffer overflows in VideoLAN VLC media player befo ... |
| CVE-2012-1775 | Stack-based buffer overflow in VideoLAN VLC media player before 2.0.1 ... |
| CVE-2012-0904 | VLC media player 1.1.11 allows remote attackers to cause a denial of s ... |
| CVE-2012-0023 | Double free vulnerability in the get_chunk_header function in modules/ ... |
| CVE-2011-3623 | Multiple stack-based buffer overflows in VideoLAN VLC media player bef ... |
| CVE-2011-2588 | Heap-based buffer overflow in the AVI_ChunkRead_strf function in libav ... |
| CVE-2011-2587 | Heap-based buffer overflow in the DemuxAudioSipr function in real.c in ... |
| CVE-2011-2194 | Integer overflow in the XSPF playlist parser in VideoLAN VLC media pla ... |
| CVE-2011-1684 | Heap-based buffer overflow in the MP4_ReadBox_skcr function in libmp4. ... |
| CVE-2011-1087 | Buffer overflow in VideoLAN VLC media player 1.0.5 allows user-assiste ... |
| CVE-2011-0531 | demux/mkv/mkv.hpp in the MKV demuxer plugin in VideoLAN VLC media play ... |
| CVE-2011-0522 | The StripTags function in (1) the USF decoder (modules/codec/subtitles ... |
| CVE-2011-0021 | Multiple heap-based buffer overflows in cdg.c in the CDG decoder in Vi ... |
| CVE-2010-3907 | Multiple integer overflows in real.c in the Real demuxer plugin in Vid ... |
| CVE-2010-3276 | libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows ... |
| CVE-2010-3275 | libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows ... |
| CVE-2010-3124 | Untrusted search path vulnerability in bin/winvlc.c in VLC Media Playe ... |
| CVE-2010-2937 | The ReadMetaFromId3v2 function in taglib.cpp in the TagLib plugin in V ... |
| CVE-2010-2062 | Integer underflow in the real_get_rdt_chunk function in real.c, as use ... |
| CVE-2010-1445 | Heap-based buffer overflow in VideoLAN VLC media player before 1.0.6 a ... |
| CVE-2010-1444 | The ZIP archive decompressor in VideoLAN VLC media player before 1.0.6 ... |
| CVE-2010-1443 | The parse_track_node function in modules/demux/playlist/xspf.c in the ... |
| CVE-2010-1442 | VideoLAN VLC media player before 1.0.6 allows remote attackers to caus ... |
| CVE-2010-1441 | Multiple heap-based buffer overflows in VideoLAN VLC media player befo ... |
| CVE-2010-0364 | Stack-based buffer overflow in VideoLAN VLC Media Player 0.8.6 allows ... |
| CVE-2009-2484 | Stack-based buffer overflow in the Win32AddConnection function in modu ... |
| CVE-2009-1274 | Integer overflow in the qt_error parse_trak_atom function in demuxers/ ... |
| CVE-2009-1045 | requests/status.xml in VLC 0.9.8a allows remote attackers to cause a d ... |
| CVE-2009-0698 | Integer overflow in the 4xm demuxer (demuxers/demux_4xm.c) in xine-lib ... |
| CVE-2008-5276 | Integer overflow in the ReadRealIndex function in real.c in the Real d ... |
| CVE-2008-5248 | xine-lib before 1.1.15 allows remote attackers to cause a denial of se ... |
| CVE-2008-5246 | Multiple heap-based buffer overflows in xine-lib before 1.1.15 allow r ... |
| CVE-2008-5235 | Heap-based buffer overflow in the demux_real_send_chunk function in sr ... |
| CVE-2008-5233 | xine-lib 1.1.12, and other versions before 1.1.15, does not check for ... |
| CVE-2008-5036 | Stack-based buffer overflow in VideoLAN VLC media player 0.9.x before ... |
| CVE-2008-5032 | Stack-based buffer overflow in VideoLAN VLC media player 0.5.0 through ... |
| CVE-2008-4686 | Multiple integer overflows in ty.c in the TY demux plugin (aka the TiV ... |
| CVE-2008-4654 | Stack-based buffer overflow in the parse_master function in the Ty dem ... |
| CVE-2008-4558 | Array index error in VLC media player 0.9.2 allows remote attackers to ... |
| CVE-2008-3794 | Integer signedness error in the mms_ReceiveCommand function in modules ... |
| CVE-2008-3732 | Integer overflow in the Open function in modules/demux/tta.c in VLC Me ... |
| CVE-2008-2430 | Integer overflow in the Open function in modules/demux/wav.c in VLC Me ... |
| CVE-2008-2147 | Untrusted search path vulnerability in VideoLAN VLC before 0.9.0 allow ... |
| CVE-2008-1881 | Stack-based buffer overflow in the ParseSSA function (modules/demux/su ... |
| CVE-2008-1769 | VLC before 0.8.6f allow remote attackers to cause a denial of service ... |
| CVE-2008-1768 | Multiple integer overflows in VLC before 0.8.6f allow remote attackers ... |
| CVE-2008-1489 | Integer overflow in the MP4_ReadBox_rdrf function in libmp4.c for VLC ... |
| CVE-2008-0984 | The MP4 demuxer (mp4.c) for VLC media player 0.8.6d and earlier, as us ... |
| CVE-2008-0296 | Heap-based buffer overflow in the libaccess_realrtsp plugin in VideoLA ... |
| CVE-2008-0295 | Heap-based buffer overflow in modules/access/rtsp/real_sdpplin.c in th ... |
| CVE-2008-0073 | Array index error in the sdpplin_parse function in input/libreal/sdppl ... |
| CVE-2007-6684 | The RTSP module in VideoLAN VLC 0.8.6d allows remote attackers to caus ... |
| CVE-2007-6683 | The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to o ... |
| CVE-2007-6682 | Format string vulnerability in the httpd_FileCallBack function (networ ... |
| CVE-2007-6681 | Stack-based buffer overflow in modules/demux/subtitle.c in VideoLAN VL ... |
| CVE-2007-6262 | A certain ActiveX control in axvlc.dll in VideoLAN VLC 0.8.6 before 0. ... |
| CVE-2007-3468 | input.c in VideoLAN VLC Media Player before 0.8.6c allows remote attac ... |
| CVE-2007-3467 | Integer overflow in the __status_Update function in stats.c VideoLAN V ... |
| CVE-2007-3316 | Multiple format string vulnerabilities in plugins in VideoLAN VLC Medi ... |
| CVE-2007-0256 | VideoLAN VLC 0.8.6a allows remote attackers to cause a denial of servi ... |
| CVE-2007-0017 | Multiple format string vulnerabilities in (1) the cdio_log_handler fun ... |
| CVE-2006-1664 | Buffer overflow in xine_list_delete_current in libxine 1.14 and earlie ... |
| CVE-2005-4048 | Heap-based buffer overflow in the avcodec_default_get_buffer function ... |
| CVE-2004-1476 | Stack-based buffer overflow in the VideoCD (VCD) code in xine-lib 1-rc ... |
| CVE-2004-1475 | Multiple stack-based buffer overflows in xine-lib 1-rc2 through 1-rc5 ... |
| CVE-2004-1455 | Stack-based buffer overflow in Xine-lib-rc5 in xine-lib 1_rc5-r2 and e ... |
| CVE-2004-1300 | Buffer overflow in the open_aiff_file function in demux_aiff.c for xin ... |