ALT-PU-2014-1986-1
Closed vulnerabilities
Published: 2017-03-28
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2014-6440
VideoLAN VLC media player before 2.1.5 allows remote attackers to execute arbitrary code or cause a denial of service.
Severity: CRITICAL (9.8)
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References:
- http://billblough.net/blog/2015/03/04/cve-2014-6440-heap-overflow-in-vlc-transcode-module/
- http://billblough.net/blog/2015/03/04/cve-2014-6440-heap-overflow-in-vlc-transcode-module/
- [oss-security] 20150304 CVE-2014-6440: Heap Overflow in VLC Transcode Module
- [oss-security] 20150304 CVE-2014-6440: Heap Overflow in VLC Transcode Module
- 72950
- 72950
- http://www.videolan.org/developers/vlc-branch/NEWS
- http://www.videolan.org/developers/vlc-branch/NEWS
- GLSA-201603-08
- GLSA-201603-08