oss-sec mailing list archives
CVE request: VLC
From: Laurent Butti <laurentb () gmail com>
Date: Mon, 30 Sep 2013 23:31:20 +0200
Hi, I have found a security issue in vlc 2.0.8 which was reported to VLC team and fixed in both 2.0.9 and 2.1.0 (as "Fix buffer overflow in the mp4a packetizer"). Here are the commit log and changelog: * http://git.videolan.org/?p=vlc.git;a=commitdiff;h=9794ec1cd268c04c8bca13a5fae15df6594dff3e * http://www.videolan.org/developers/vlc-branch/NEWS Could a CVE be assigned? Thanks, Laurent Butti.
Current thread:
- CVE request: VLC Laurent Butti (Sep 30)
- Re: CVE request: VLC Kurt Seifried (Sep 30)
- Re: CVE request: VLC Laurent Butti (Sep 30)
- Re: CVE request: VLC Kurt Seifried (Sep 30)