*** This bug is a security vulnerability *** Public security bug reported:
It includes the following security content: Fixed Ogg Heap buffer overflow ogg: Fix a heap buffer overflow. Reported by: An anonymous contributor working with the SecuriTeam Secure Disclosure program (http://www.beyondsecurity.com/ssd.html) (cherry picked from commit 6a41b030f5b7fcbe5ad7249c374172c0fdc29add) http://git.videolan.org/gitweb.cgi/vlc/vlc-2.0.git/?a=commit;h=16e9e126333fb7acb47d363366fee3deadc8331e Updated taglib (CVE-2012-2396) ** Affects: vlc (Ubuntu) Importance: Undecided Status: New ** Affects: vlc (Debian) Importance: Unknown Status: Unknown ** Bug watch added: Debian Bug tracker #671727 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=671727 ** Also affects: vlc (Debian) via http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=671727 Importance: Unknown Status: Unknown ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2012-2396 ** Summary changed: - vlc-2.0.2: Ogg Heap buffer overflow & CVE-2012-2396 + <vlc-2.0.2: Ogg Heap buffer overflow & CVE-2012-2396 ** Visibility changed to: Public -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1020403 Title: <vlc-2.0.2: Ogg Heap buffer overflow & CVE-2012-2396 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/vlc/+bug/1020403/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
