Bugs fixes in "vlc"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2016-5108 | Buffer overflow in the DecodeAdpcmImaQT function in modules/codec/adpcm.c in VideoLAN VLC media player before 2.2.4 allows remote attackers to cause | 2017-07-11 |
| Launchpad | 1693893 | Fix out-of-bounds read, potential heap buffer overflow, and other CVEs | 2017-07-11 |
| CVE | CVE-2017-8313 | Heap out-of-bound read in ParseJSS in VideoLAN VLC before 2.2.5 due to missing check of string termination allows attackers to read data beyond alloc | 2017-07-11 |
| CVE | CVE-2017-8312 | Heap out-of-bound read in ParseJSS in VideoLAN VLC due to missing check of string length allows attackers to read heap uninitialized data via a craft | 2017-07-11 |
| CVE | CVE-2017-8311 | Potential heap based buffer overflow in ParseJSS in VideoLAN VLC before 2.2.5 due to skipping NULL terminator in an input string allows attackers to | 2017-07-11 |
| CVE | CVE-2017-8310 | Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2.x due to missing check of string termination allows attackers to read data beyond al | 2017-07-11 |
| CVE | CVE-2017-1069 | RESERVED | 2017-07-11 |
| CVE | CVE-2016-5108 | Buffer overflow in the DecodeAdpcmImaQT function in modules/codec/adpcm.c in VideoLAN VLC media player before 2.2.4 allows remote attackers to cause | 2017-07-11 |
| Launchpad | 1693893 | Fix out-of-bounds read, potential heap buffer overflow, and other CVEs | 2017-07-11 |
| Launchpad | 1676845 | libgles1-mesa is being removed, don't depend on it | 2017-05-10 |
| Launchpad | 1676845 | libgles1-mesa is being removed, don't depend on it | 2017-04-05 |
| Launchpad | 1639750 | subtitle downloads hang | 2017-03-01 |
| Launchpad | 1639750 | subtitle downloads hang | 2017-02-22 |
| CVE | CVE-2016-3941 | Buffer overflow in the AStreamPeekStream function in input/stream.c in VideoLAN VLC media player before 2.2.0 allows remote attackers to cause a deni | 2016-05-03 |
| CVE | CVE-2014-9743 | Cross-site scripting (XSS) vulnerability in the httpd_HtmlError function in network/httpd.c in the web interface in VideoLAN VLC Media Player before | 2016-05-03 |
| CVE | CVE-2014-9597 | The picture_pool_Delete function in misc/picture_pool.c in VideoLAN VLC media player 2.1.5 allows remote attackers to execute arbitrary code or cause | 2016-05-03 |
| Launchpad | 1533633 | Specially crafted wav file causing a buffer overflow in vlc | 2016-05-03 |
| CVE | CVE-2016-3941 | Buffer overflow in the AStreamPeekStream function in input/stream.c in VideoLAN VLC media player before 2.2.0 allows remote attackers to cause a deni | 2016-05-03 |
| CVE | CVE-2014-9743 | Cross-site scripting (XSS) vulnerability in the httpd_HtmlError function in network/httpd.c in the web interface in VideoLAN VLC Media Player before | 2016-05-03 |
| CVE | CVE-2014-9597 | The picture_pool_Delete function in misc/picture_pool.c in VideoLAN VLC media player 2.1.5 allows remote attackers to execute arbitrary code or cause | 2016-05-03 |
About
-
Send Feedback to @ubuntu_updates
