UbuntuUpdates.org

Bugs fixes in "vlc"

Origin Bug number Title Date fixed
CVE CVE-2019-13602 An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in VideoLAN VLC media player through 3.0.7.1 allows remote attackers to cause 2019-07-25
CVE CVE-2019-12874 An issue was discovered in zlib_decompress_extra in modules/demux/mkv/util.cpp in VideoLAN VLC media player 3.x through 3.0.7. The Matroska demuxer, 2019-07-25
CVE CVE-2019-5439 A Buffer Overflow in VLC Media Player < 3.0.7 causes a crash which can possibly be further developed into a remote code execution exploit. 2019-07-25
CVE CVE-2018-19857 The CAF demuxer in modules/demux/caf.c in VideoLAN VLC media player 3.0.4 may read memory from an uninitialized pointer when processing magic cookies 2019-07-25
CVE CVE-2019-13602 An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in VideoLAN VLC media player through 3.0.7.1 allows remote attackers to cause 2019-07-25
CVE CVE-2019-12874 An issue was discovered in zlib_decompress_extra in modules/demux/mkv/util.cpp in VideoLAN VLC media player 3.x through 3.0.7. The Matroska demuxer, 2019-07-25
CVE CVE-2019-5439 A Buffer Overflow in VLC Media Player < 3.0.7 causes a crash which can possibly be further developed into a remote code execution exploit. 2019-07-25
CVE CVE-2018-19857 The CAF demuxer in modules/demux/caf.c in VideoLAN VLC media player 3.0.4 may read memory from an uninitialized pointer when processing magic cookies 2019-07-25
Launchpad 1790738 [SRU] Update to bugfix release 3.0.4 in Bionic 2018-11-26
Launchpad 1790738 [SRU] Update to bugfix release 3.0.4 in Bionic 2018-10-22
Launchpad 1774067 [SRU] Update to bugfix release 3.0.3 in Bionic 2018-08-02
Launchpad 1774067 [SRU] Update to bugfix release 3.0.3 in Bionic 2018-08-02
Launchpad 1774067 [SRU] Update to bugfix release 3.0.3 in Bionic 2018-07-27
Launchpad 1771259 [SRU] Update to bugfix release 3.0.2 in Bionic 2018-05-24
Launchpad 1771259 [SRU] Update to bugfix release 3.0.2 in Bionic 2018-05-15
CVE CVE-2017-9300 plugins\codec\libflac_plugin.dll in VideoLAN VLC media player 2.2.4 allows remote attackers to cause a denial of service (heap corruption and applica 2017-08-11
Launchpad 1709420 [CVE] flac: Fix heap write overflow on frame format change 2017-08-11
CVE CVE-2017-9300 plugins\codec\libflac_plugin.dll in VideoLAN VLC media player 2.2.4 allows remote attackers to cause a denial of service (heap corruption and applica 2017-08-11
Launchpad 1709420 [CVE] flac: Fix heap write overflow on frame format change 2017-08-11
CVE CVE-2017-8313 Heap out-of-bound read in ParseJSS in VideoLAN VLC before 2.2.5 due to missing check of string termination allows attackers to read data beyond alloc 2017-07-11



About   -   Send Feedback to @ubuntu_updates