An exploitable denial-of-service vulnerability exists in the resource record-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing compressed labels in mDNS messages, the compression pointer is followed without checking for recursion, leading to a denial of service. An attacker can send an mDNS message to trigger this vulnerability.
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "binaries": [ { "binary_name": "libvlc-bin", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "libvlc-dev", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "libvlc5", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "libvlccore-dev", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "libvlccore9", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "vlc", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "vlc-bin", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "vlc-data", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "vlc-l10n", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "vlc-plugin-access-extra", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "vlc-plugin-base", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "vlc-plugin-fluidsynth", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "vlc-plugin-jack", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "vlc-plugin-notify", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "vlc-plugin-qt", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "vlc-plugin-samba", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "vlc-plugin-skins2", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "vlc-plugin-svg", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "vlc-plugin-video-output", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "vlc-plugin-video-splitter", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "vlc-plugin-visualization", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" }, { "binary_name": "vlc-plugin-zvbi", "binary_version": "3.0.8-0ubuntu18.04.1+esm3" } ] }