10 matches found
VLC Media PlayerKodiPopcornTime Red Chimera 2.2.5 - Memory Corruption (PoC)
VLC Media PlayerKodiPopcornTime Red Chimera 2.2.5 - Memory Corruption PoC """ VLC Media Player/Kodi/PopcornTime 'Red Chimera' 2.2.5 Memory Corruption PoC Author: SivertPL [email protected] CVE: CVE-2017-8311 Infamous VLC/Kodi/PopcornTime subtitle attack in libsubtitleplugin.dll. This is the...
Security fix for the ALT Linux 8 package vlc version 2.2.6.20170917-alt1.M80P.1
2.2.6.20170917-alt1.M80P.1 built Feb. 12, 2018 Alexey Appolonov in task 200410 Feb. 9, 2018 Alexey Appolonov - New version Fixes: CVE-2017-10699, CVE-2017-8310, CVE-2017-8311, CVE-2017-8313, CVE-2017-9300, CVE-2017-9301...
Security fix for the ALT Linux 8 package vlc version 2.2.6.20170917-alt0.M80C.1
Sept. 18, 2017 Anton V. Boyarshinov 2.2.6.20170917-alt0.M80C.1 - 2.2.6+ Fixes: CVE-2017-10699, CVE-2017-8310, CVE-2017-8311, CVE-2017-8313, CVE-2017-9300, CVE-2017-9301...
[SECURITY] [DSA 3899-1] vlc security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3899-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 27, 2017 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3899-1] vlc security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3899-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 27, 2017 https://www.debian.org/security/faq -...
Debian: Security Advisory (DSA-3899-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
VLC Media Player < 2.2.5 Multiple Vulnerabilities
The version of VLC media player installed on the remote host is prior to 2.2.5. It is, therefore, affected by the multiple vulnerabilities : - A denial of service vulnerability exists within file plugins\audiofilter\libmpgatofixed32plugin.dll when parsing media files due to improper validation of...
CVE-2017-8311
Potential heap based buffer overflow in ParseJSS in VideoLAN VLC before 2.2.5 due to skipping NULL terminator in an input string allows attackers to execute arbitrary code via a crafted subtitles file...
CVE-2017-8311
VLC 2.2.x contains a heap-based buffer overflow in the JacoSUB/ParseJSS subtitle parsing path from crafted subtitle files, due to skipping the NULL terminator. This can crash the player or allow arbitrary code execution. Public advisories summarize CVE-2017-8311 alongside related issues (CVE-2017...
KLA11023 Multiple vulnerabilities in VideoLAN VLC Media Player
Multiple serious vulnerabilities have been found in VideoLAN VLC Media Player. Malicious users can exploit these vulnerabilities to cause a denial of service or execute arbitrary code. Below is a complete list of vulnerabilities: 1. Heap out-of-bound read in CreateHtmlSubtitle and in ParseJSS can...