Описание
A heap-based buffer over-read in xiph_PackHeaders() in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer over-read via a crafted .ogg file.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 3.0.8-0ubuntu18.04.1 |
| devel | not-affected | 3.0.8-2 |
| disco | released | 3.0.8-0ubuntu19.04.1 |
| eoan | not-affected | 3.0.8-2 |
| esm-apps/bionic | released | 3.0.8-0ubuntu18.04.1 |
| esm-apps/focal | not-affected | 3.0.8-2 |
| esm-apps/jammy | not-affected | 3.0.8-2 |
| esm-apps/noble | not-affected | 3.0.8-2 |
| esm-apps/xenial | needed | |
| focal | not-affected | 3.0.8-2 |
Показывать по
6.8 Medium
CVSS2
7.8 High
CVSS3
Связанные уязвимости
A heap-based buffer over-read in xiph_PackHeaders() in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer over-read via a crafted .ogg file.
A heap-based buffer over-read in xiph_PackHeaders() in modules/demux/x ...
A heap-based buffer over-read in xiph_PackHeaders() in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer over-read via a crafted .ogg file.
Уязвимость функции xiph_PackHeaders() программы-медиапроигрывателя VideoLAN VLC, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации
6.8 Medium
CVSS2
7.8 High
CVSS3