CVE-2018-19857

The CAF demuxer in modules/demux/caf.c in VideoLAN VLC media player 3.0.4 may read memory from an uninitialized pointer when processing magic cookies in CAF files, because a ReadKukiChunk() cast converts a return value to an unsigned int even if that value is negative. This could result in a denial of service and/or a potential infoleak.

Link	Resource
https://git.videolan.org/?p=vlc.git;a=commit;h=0cc5ea748ee5ff7705dde61ab15dff8f58be39d0	Patch Third Party Advisory
https://dyntopia.com/advisories/013-vlc	Exploit Third Party Advisory
http://www.securityfocus.com/bid/106130	Third Party Advisory VDB Entry
https://www.debian.org/security/2019/dsa-4366	Third Party Advisory
https://usn.ubuntu.com/4074-1/
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00005.html
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00040.html
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00037.html
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00081.html

Configuration 1

cpe:2.3:a:videolan:vlc_media_player:3.0.4:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

---

Published : 2018-12-05 11:29

Updated : 2019-07-25 05:15

---

NVD link : CVE-2018-19857

Mitre link : CVE-2018-19857

No products.

CWE-824

Access of Uninitialized Pointer