Can this bug be closed if no additional information gets added?
Thank you, Carl Eugen
On Tuesday 19 January 2016 19:06:54 Andreas Cadhalpun wrote:
> On 19.01.2016 17:27, Sebastian Ramacher wrote:
> > On 2016-01-19 18:11:01, Rémi Denis-Courmont wrote:
> >> With a carefully crafted URL, the VLC avio plugin can be made to leak
> >> content of local files to remote parties.
> >> The
Control: tags -1 = moreinfo
Control: severity -1 important
Hi,
On 19.01.2016 17:27, Sebastian Ramacher wrote:
> On 2016-01-19 18:11:01, Rémi Denis-Courmont wrote:
>> With a carefully crafted URL, the VLC avio plugin can be made to leak
>> content of local files to remote parties.
>> The root
On 19.01.2016 20:32, Rémi Denis-Courmont wrote:
> On Tuesday 19 January 2016 19:06:54 Andreas Cadhalpun wrote:
>> How is CVE-2016-1897 not fully fixed?
>>
>> Rémi, please share details about any remaining vulnerability with
>> .
>
> This is a VLC vulnerability and I
Control: reassign -1 src:ffmpeg 7:2.8.4-1
Control: retitle -1 ffmpeg: needs to build with --disable-protocol=concat to
really fix CVE-2016-1897
On 2016-01-19 18:11:01, Rémi Denis-Courmont wrote:
> Package: vlc
> Version: 2.2.1-5+b1
> Severity: grave
> Tags: security patch
> Justification: user
Package: vlc
Version: 2.2.1-5+b1
Severity: grave
Tags: security patch
Justification: user security hole
Dear Maintainer,
With a carefully crafted URL, the VLC avio plugin can be made to leak
content of local files to remote parties.
The root cause is the same as CVE-2016-1897.
See also:
6 matches
Mail list logo