Описание
Integer overflow in the Encode function in modules/codec/schroedinger.c in VideoLAN VLC media player before 2.1.6 and 2.2.x before 2.2.1 allows remote attackers to conduct buffer overflow attacks and execute arbitrary code via a crafted length value.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.2.0~rc2-2 |
| esm-apps/xenial | not-affected | 2.2.0~rc2-2 |
| esm-infra-legacy/trusty | DNE | trusty/esm was not-affected [2.1.6-0ubuntu14.04.1] |
| lucid | ignored | end of life |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| trusty | released | 2.1.6-0ubuntu14.04.1 |
| trusty/esm | released | 2.1.6-0ubuntu14.04.1 |
| upstream | released | 2.1.6,2.2.0 |
| utopic | released | 2.2.0-0ubuntu0.14.10.1 |
Показывать по
Ссылки на источники
6.8 Medium
CVSS2
7.8 High
CVSS3
Связанные уязвимости
Integer overflow in the Encode function in modules/codec/schroedinger.c in VideoLAN VLC media player before 2.1.6 and 2.2.x before 2.2.1 allows remote attackers to conduct buffer overflow attacks and execute arbitrary code via a crafted length value.
Integer overflow in the Encode function in modules/codec/schroedinger. ...
Integer overflow in the Encode function in modules/codec/schroedinger.c in VideoLAN VLC media player before 2.1.6 and 2.2.x before 2.2.1 allows remote attackers to conduct buffer overflow attacks and execute arbitrary code via a crafted length value.
Уязвимость кодировщиков Dirac и Schroedinger программы-медиапроигрывателя VideoLAN VLC, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
6.8 Medium
CVSS2
7.8 High
CVSS3