[ubuntu/xenial-security] vlc 2.2.2-5ubuntu0.16.04.3 (Accepted)

Emily Ratliff Mon, 10 Jul 2017 16:41:24 -0700

vlc (2.2.2-5ubuntu0.16.04.3) xenial-security; urgency=high

  * SECURITY UPDATE: reject invalid QuickTime IMA files (LP: #1693893)
    - fix-CVE-2016-5108.patch
    - CVE-2016-5108
  * SECURITY UPDATE: Crash due to Out-of-Bound Heap Memory Write
    - fix-CVE-2017-10699.patch
    - CVE-2017-10699
  * SECURITY UPDATE: Fix potential out of bound reads
    - fix-CVE-2017-8310.patch
    - CVE-2017-8310
  * SECURITY UPDATE: Fix invalid double increment
    - fix-CVE-2017-8311.patch
    - CVE-2017-8311
  * SECURITY UPDATE: Fix potential heap buffer overflow
    - fix-CVE-2017-8312.patch
    - CVE-2017-8312
  * SECURITY UPDATE: ParseJSS: fix out-of-bounds read
    - fix-CVE-2017-8313.patch
    - CVE-2017-8313


Date: 2017-07-10 18:13:13.791061+00:00
Changed-By: Simon Quigley <tsimo...@ubuntu.com>
Signed-By: Emily Ratliff <emily.ratl...@canonical.com>
https://launchpad.net/ubuntu/+source/vlc/2.2.2-5ubuntu0.16.04.3

Sorry, changesfile not available.

-- 
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/xenial-changes

[ubuntu/xenial-security] vlc 2.2.2-5ubuntu0.16.04.3 (Accepted)

Reply via email to