This bug was fixed in the package vlc - 2.1.6-0ubuntu14.04.4
---------------
vlc (2.1.6-0ubuntu14.04.4) trusty-security; urgency=medium
* SECURITY UPDATE: flac: Fix heap write overflow on frame format change
(LP: #1709420)
- fix-CVE-2017-9300.patch
- CVE-2017-9300
-- Simon Quigley <tsimo...@ubuntu.com> Tue, 08 Aug 2017 14:15:04 -0500
** Changed in: vlc (Ubuntu Trusty)
Status: In Progress => Fix Released
--
You received this bug notification because you are a member of नेपाली
भाषा समायोजकहरुको समूह, which is subscribed to Xenial.
Matching subscriptions: Ubuntu 16.04 Bugs
https://bugs.launchpad.net/bugs/1709420
Title:
[CVE] flac: Fix heap write overflow on frame format change
Status in vlc package in Ubuntu:
Fix Released
Status in vlc source package in Trusty:
Fix Released
Status in vlc source package in Xenial:
Fix Released
Status in vlc source package in Zesty:
Fix Released
Bug description:
plugins\codec\libflac_plugin.dll in VideoLAN VLC media player 2.2.4 allows
remote attackers to cause a denial of service (heap corruption and
application crash) or possibly have unspecified other impact via a crafted
FLAC file.
This is tracked in CVE-2017-9300.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/vlc/+bug/1709420/+subscriptions
_______________________________________________
Mailing list: https://launchpad.net/~group.of.nepali.translators
Post to : group.of.nepali.translators@lists.launchpad.net
Unsubscribe : https://launchpad.net/~group.of.nepali.translators
More help : https://help.launchpad.net/ListHelp
