lavc_CopyPicture in... CVE-2019-13962

7.5 AV AC AU C I A
发布: 2019-07-18
修订: 2019-10-11

VideoLAN VLC is prone to a heap-based buffer-overflow vulnerability. Attackers can exploit this issue to cause a denial-of-service condition, denying service to legitimate users. Given the nature of this issue, attackers may also be able to execute arbitrary code, but this has not been confirmed. VideoLAN VLC Media Player version 3.0.7 and prior are vulnerable; other versions may also be affected.