Current Activity - VideoLAN Releases VLC Media Player 1.1.10

[Current Activity <us-cert () us-cert gov>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

US-CERT Current Activity

VideoLAN Releases VLC Media Player 1.1.10

Original release date: June 6, 2011 at 9:19 am
Last revised: June 6, 2011 at 9:19 am


VideoLAN has released VLC Media Player 1.1.10 to address an integer
overflow vulnerability in the xspf demuxer. Exploitation of this
vulnerability may allow an attacker to execute arbitrary code.

US-CERT encourages users and administrators to review the release
notes for VLC Media Player 1.1.10 and apply any necessary updates to
help mitigate the risks.

Relevant Url(s):
<http://www.videolan.org/vlc/releases/1.1.10.html>

====
This entry is available at
http://www.us-cert.gov/current/index.html#videolan_releases_vlc_media_player1

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iQEVAwUBTezaOD6pPKYJORa3AQJ4QAf9EIR40lrdu9BtOn3mIhxNh2HOkfZJn7qP
SpEHE5IyiICmWqx1uqciLpOj8cza37PguQHWwvgNk76ywzmyeo2bgrC5KI7mCxJG
5FXCC7vRGiarleYcp38bzN5FyjfMF2nn/efk7jjIa1Vp3WVgo6EvHuNRGOLgqE1i
QUBnh5v7kMwDV/VMZ6+6CgG3LC28CyTRMzwd7XciY6Cqxep1LRMqThdsaLfpUMc5
3wViDhMtrHH5v1gNJoQob27h0GoAljdB99ShSmptjbqvWPTHUbgK7OQOKf3wj33G
cWAvTaIJdA6m8XVWcXI8geaOmdL9vL+XdirdlzqymnREhkVdiPU7mg==
=ihmy
-----END PGP SIGNATURE-----