Allele Security Alert
ASA-2019-00386, CVE-2019-12874, VideoLAN-SA-1901
Double free in zlib_decompress_extra()
VLC media player
VLC media player versions 3.0.6 and earlier
VLC media player version 3.0.7
Proof of concept
A remote user can create some specially crafted mkv files that, when loaded by the target user, will trigger a double free in zlib_decompress_extra() (demux/mkv/utils.cpp) respectively.
If successful, a malicious third party could trigger either a crash of VLC or an arbitratry code execution with the privileges of the target user.
Read buffer overflow & double free
VLC 3.0.7 and security
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: June 27, 2019