Описание
Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2.x due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process (causing a denial of service) via a crafted subtitles file.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| esm-apps/xenial | released | 2.2.2-5ubuntu0.16.04.3 |
| esm-infra-legacy/trusty | DNE | trusty/esm was not-affected [2.1.6-0ubuntu14.04.3] |
| precise/esm | DNE | |
| trusty | released | 2.1.6-0ubuntu14.04.3 |
| trusty/esm | released | 2.1.6-0ubuntu14.04.3 |
| upstream | needs-triage | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| xenial | released | 2.2.2-5ubuntu0.16.04.3 |
Показывать по
Ссылки на источники
EPSS
4.3 Medium
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2.x due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process (causing a denial of service) via a crafted subtitles file.
Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2.x due ...
Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2.x due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process (causing a denial of service) via a crafted subtitles file.
EPSS
4.3 Medium
CVSS2
5.5 Medium
CVSS3