ALT-PU-2016-1220-1
Closed vulnerabilities
Published: 2015-08-20
BDU:2019-03985
Уязвимость программы-медиапроигрывателя VideoLAN VLC, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
Severity: MEDIUM (5.6)
Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
References:
Published: 2015-08-25
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2015-5949
VideoLAN VLC media player 2.2.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted 3GP file, which triggers the freeing of arbitrary pointers.
Severity: MEDIUM (6.8)
References:
- openSUSE-SU-2016:0476
- openSUSE-SU-2016:0476
- http://packetstormsecurity.com/files/133266/VLC-2.2.1-Arbitrary-Pointer-Dereference.html
- http://packetstormsecurity.com/files/133266/VLC-2.2.1-Arbitrary-Pointer-Dereference.html
- DSA-3342
- DSA-3342
- [oss-security] 20150820 [oCERT-2015-009] VLC arbitrary pointer dereference
- [oss-security] 20150820 [oCERT-2015-009] VLC arbitrary pointer dereference
- [oss-security] 20150820 Re: [oCERT-2015-009] VLC arbitrary pointer dereference
- [oss-security] 20150820 Re: [oCERT-2015-009] VLC arbitrary pointer dereference
- 20150820 [oCERT-2015-009] VLC arbitrary pointer dereference
- 20150820 [oCERT-2015-009] VLC arbitrary pointer dereference
- https://git.videolan.org/?p=vlc/vlc-2.2.git%3Ba=commitdiff%3Bh=ce91452460a75d7424b165c4dc8db98114c3cbd9%3Bhp=9e12195d3e4316278af1fa4bcb6a705ff27456fd
- https://git.videolan.org/?p=vlc/vlc-2.2.git%3Ba=commitdiff%3Bh=ce91452460a75d7424b165c4dc8db98114c3cbd9%3Bhp=9e12195d3e4316278af1fa4bcb6a705ff27456fd
- GLSA-201603-08
- GLSA-201603-08
- https://www.ocert.org/advisories/ocert-2015-009.html
- https://www.ocert.org/advisories/ocert-2015-009.html