A vulnerability in EbmlTypeDispatcher::send in VideoLAN VLC media player 3.0.11 allows attackers to trigger a heap-based buffer overflow via a crafted .mkv file.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libvlc5-dbgsym": "3.0.16-1build7", "vlc-plugin-video-output": "3.0.16-1build7", "vlc-plugin-svg-dbgsym": "3.0.16-1build7", "vlc-plugin-notify-dbgsym": "3.0.16-1build7", "vlc-plugin-video-output-dbgsym": "3.0.16-1build7", "vlc-plugin-fluidsynth": "3.0.16-1build7", "vlc-plugin-fluidsynth-dbgsym": "3.0.16-1build7", "vlc-plugin-visualization": "3.0.16-1build7", "libvlc-bin": "3.0.16-1build7", "libvlccore9": "3.0.16-1build7", "libvlc-bin-dbgsym": "3.0.16-1build7", "vlc-data": "3.0.16-1build7", "vlc-plugin-visualization-dbgsym": "3.0.16-1build7", "vlc-plugin-video-splitter-dbgsym": "3.0.16-1build7", "libvlc-dev": "3.0.16-1build7", "vlc-plugin-qt": "3.0.16-1build7", "libvlccore9-dbgsym": "3.0.16-1build7", "vlc-bin-dbgsym": "3.0.16-1build7", "vlc-plugin-base": "3.0.16-1build7", "vlc-plugin-skins2": "3.0.16-1build7", "vlc": "3.0.16-1build7", "vlc-plugin-qt-dbgsym": "3.0.16-1build7", "vlc-plugin-access-extra-dbgsym": "3.0.16-1build7", "vlc-plugin-jack": "3.0.16-1build7", "libvlc5": "3.0.16-1build7", "vlc-plugin-samba-dbgsym": "3.0.16-1build7", "vlc-bin": "3.0.16-1build7", "vlc-plugin-svg": "3.0.16-1build7", "vlc-l10n": "3.0.16-1build7", "vlc-plugin-access-extra": "3.0.16-1build7", "vlc-plugin-jack-dbgsym": "3.0.16-1build7", "vlc-plugin-samba": "3.0.16-1build7", "vlc-plugin-base-dbgsym": "3.0.16-1build7", "vlc-plugin-notify": "3.0.16-1build7", "libvlccore-dev": "3.0.16-1build7", "vlc-plugin-skins2-dbgsym": "3.0.16-1build7", "vlc-plugin-video-splitter": "3.0.16-1build7" } ] }