This bug was fixed in the package vlc - 2.2.4-14ubuntu2.2 --------------- vlc (2.2.4-14ubuntu2.2) zesty-security; urgency=medium
* SECURITY UPDATE: flac: Fix heap write overflow on frame format change (LP: #1709420) - fix-CVE-2017-9300.patch - CVE-2017-9300 -- Simon Quigley <tsimo...@ubuntu.com> Tue, 08 Aug 2017 13:41:33 -0500 ** Changed in: vlc (Ubuntu Zesty) Status: In Progress => Fix Released -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/1709420 Title: [CVE] flac: Fix heap write overflow on frame format change Status in vlc package in Ubuntu: Fix Released Status in vlc source package in Trusty: In Progress Status in vlc source package in Xenial: Fix Released Status in vlc source package in Zesty: Fix Released Bug description: plugins\codec\libflac_plugin.dll in VideoLAN VLC media player 2.2.4 allows remote attackers to cause a denial of service (heap corruption and application crash) or possibly have unspecified other impact via a crafted FLAC file. This is tracked in CVE-2017-9300. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/vlc/+bug/1709420/+subscriptions _______________________________________________ Mailing list: https://launchpad.net/~group.of.nepali.translators Post to : group.of.nepali.translators@lists.launchpad.net Unsubscribe : https://launchpad.net/~group.of.nepali.translators More help : https://help.launchpad.net/ListHelp