group.of.nepali.translators team mailing list archive

[Launchpad Bug Tracker <1693893@xxxxxxxxxxxxxxxxxx>]

This bug was fixed in the package vlc - 2.2.6-2ubuntu1

---------------
vlc (2.2.6-2ubuntu1) artful; urgency=high

  * SECURITY UPDATE: Crash due to Out-of-Bound Heap Memory Write (LP: #1693893)
    - fix-CVE-2017-10699.patch
    - CVE-2017-10699

 -- Simon Quigley <tsimonq2@xxxxxxxxxx>  Mon, 10 Jul 2017 01:33:27 -0500

** Changed in: vlc (Ubuntu Artful)
       Status: In Progress => Fix Released

-- 
You received this bug notification because you are a member of नेपाली
भाषा समायोजकहरुको समूह, which is subscribed to Xenial.
Matching subscriptions: Ubuntu 16.04 Bugs
https://bugs.launchpad.net/bugs/1693893

Title:
  Fix out-of-bounds read, potential heap buffer overflow, and other CVEs

Status in vlc package in Ubuntu:
  Fix Released
Status in vlc source package in Trusty:
  In Progress
Status in vlc source package in Xenial:
  Fix Released
Status in vlc source package in Zesty:
  Fix Released
Status in vlc source package in Artful:
  Fix Released

Bug description:
  This bug is meant to track the following public VLC CVEs and their
  status in Ubuntu. Here are the affected Ubuntu releases and the CVEs
  that affect that specific release:

  - Xenial:
    - 2016-5108
    - 2017-10699
    - 2017-8310
    - 2017-8311
    - 2017-8312
    - 2017-8313

  - Zesty:
    - 2017-10699
    - 2017-8310
    - 2017-8311
    - 2017-8312
    - 2017-8313
    - Already fixed in the package:
      - 2016-5108

  - Artful:
    - 2017-10699
    - Already fixed in the package:
      - 2016-5108
      - 2017-8310
      - 2017-8311
      - 2017-8312
      - 2017-8313

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/vlc/+bug/1693893/+subscriptions