From ca26272bb3a28ff368c33fa9686b58b4aa346c0b Mon Sep 17 00:00:00 2001 From: thierry Date: Tue, 3 Nov 2009 21:18:59 +0000 Subject: Add an entry for VideoLAN-SA-0901, about multimedia/vlc. --- security/vuxml/vuln.xml | 31 ++++++++++++++++++++++++++++++- 1 file changed, 30 insertions(+), 1 deletion(-) (limited to 'security') diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index bf82dc4a72a4..cb898ac8ca02 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -35,6 +35,35 @@ Note: Please add new entries to the beginning of this file. --> + + vlc -- stack overflow in MPA, AVI and ASF demuxer + + + vlc + 0.5.01.0.2 + + + + +

VideoLAN reports:

+
When parsing a MP4, ASF or AVI file with an overly deep box + structure, a stack overflow might occur. It would overwrite the + return address and thus redirect the execution flow.
+
If successful, a malicious third party could trigger execution + of arbitrary code within the context of the VLC media player.
+

+ + + + http://www.videolan.org/security/sa0901.html + + + 2009-09-14 + 2009-11-03 + + + KDE -- multiple vulnerabilities @@ -7541,7 +7570,7 @@ Note: Please add new entries to the beginning of this file. vlc-devel 0.9.6,3 - + -- cgit