[ubuntu/trusty-security] vlc 2.1.6-0ubuntu14.04.3 (Accepted)
Emily Ratliff
emily.ratliff at canonical.com
Wed Jul 12 15:38:07 UTC 2017
vlc (2.1.6-0ubuntu14.04.3) trusty-security; urgency=high
* SECURITY UPDATE: reject invalid QuickTime IMA files (LP: #1693893)
- fix-CVE-2016-5108.patch
- CVE-2016-5108
* SECURITY UPDATE: Fix potential out of bound reads
- fix-CVE-2017-8310.patch
- CVE-2017-8310
* SECURITY UPDATE: Fix invalid double increment
- fix-CVE-2017-8311.patch
- CVE-2017-8311
* SECURITY UPDATE: Fix potential heap buffer overflow
- fix-CVE-2017-8312.patch
- CVE-2017-8312
* SECURITY UPDATE: ParseJSS: fix out-of-bounds read
- fix-CVE-2017-8313.patch
- CVE-2017-8313
Date: 2017-07-12 03:12:16.309536+00:00
Changed-By: Simon Quigley <tsimonq2 at ubuntu.com>
Signed-By: Emily Ratliff <emily.ratliff at canonical.com>
https://launchpad.net/ubuntu/+source/vlc/2.1.6-0ubuntu14.04.3
-------------- next part --------------
Sorry, changesfile not available.
More information about the Trusty-changes
mailing list