9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
Several remote vulnerabilities have been discovered in the VideoLan
multimedia player and streamer, which may lead to the execution of
arbitrary code. The Common Vulnerabilities and Exposures project
identifies the following problems:
This update also fixes several crashes, which can be triggered through
malformed media files.
For the oldstable distribution (sarge) these problems have been fixed in
version 0.8.1.svn20050314-1sarge3. Packages for the powerpc architecture
are not yet available. They will be provided later.
For the stable distribution (etch) these problems have been fixed
in version 0.8.6-svn20061012.debian-5etch1.
For the unstable distribution (sid) these problems have been fixed in
version 0.8.6.c-1.
We recommend that you upgrade your vlc packages.
CPE | Name | Operator | Version |
---|---|---|---|
vlc | eq | 0.8.6-svn20061012.debian-5 |