High severity7.8NVD Advisory· Published May 15, 2020· Updated Jun 17, 2026
CVE-2019-19721
CVE-2019-19721
Description
An off-by-one error in the DecodeBlock function in codec/sdl_image.c in VideoLAN VLC media player before 3.0.9 allows remote attackers to cause a denial of service (memory corruption) via a crafted image file. NOTE: this may be related to the SDL_Image product.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- VideoLAN/VLC media playerdescription
- Range: <3.0.9
Patches
Vulnerability mechanics
References
4- bugs.gentoo.org/721940nvdExploitPatchThird Party Advisory
- hg.libsdl.org/SDL_image/nvdRelease NotesThird Party Advisory
- www.videolan.org/security/nvdVendor Advisory
- git.videolan.orgnvd
News mentions
1- ABB Ability Camera ConnectCISA ICS Advisories