Уязвимость CVE-2014-9630

Пакет	Статус	Версия исправления	Релиз	Тип
vlc	fixed	2.2.0~rc2-2		package
vlc	end-of-life		squeeze	package

CVE-2014-9630

CVSS3: 7.8

ubuntu

около 6 лет назад

The rtp_packetize_xiph_config function in modules/stream_out/rtpfmt.c in VideoLAN VLC media player before 2.1.6 uses a stack-allocation approach with a size determined by arbitrary input data, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted length value.

CVE-2014-9630

CVSS3: 7.8

nvd

около 6 лет назад

The rtp_packetize_xiph_config function in modules/stream_out/rtpfmt.c in VideoLAN VLC media player before 2.1.6 uses a stack-allocation approach with a size determined by arbitrary input data, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted length value.

GHSA-cwpg-j8r2-wpc3

CVSS3: 7.8

github

больше 3 лет назад

The rtp_packetize_xiph_config function in modules/stream_out/rtpfmt.c in VideoLAN VLC media player before 2.1.6 uses a stack-allocation approach with a size determined by arbitrary input data, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted length value.

BDU:2019-03984

CVSS3: 9.8

fstec

около 11 лет назад

Уязвимость реализации протокола RTP программы-медиапроигрывателя VideoLAN VLC, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании

exploitDog

CVE-2014-9630

Описание

Пакеты

Примечания

Связанные уязвимости