group.of.nepali.translators team mailing list archive

Thread
Date

[Bug 1709420] Re: flac: Fix heap write overflow on frame format change

To: group.of.nepali.translators@xxxxxxxxxxxxxxxxxxx
From: Simon Quigley <tsimonq2@xxxxxxxxxx>
Date: Tue, 08 Aug 2017 19:22:09 -0000
Reply-to: Bug 1709420 <1709420@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

** Changed in: vlc (Ubuntu Zesty)
       Status: New => In Progress

** Changed in: vlc (Ubuntu Xenial)
       Status: New => In Progress

** Changed in: vlc (Ubuntu Trusty)
       Status: New => In Progress

** Changed in: vlc (Ubuntu)
       Status: Confirmed => Fix Released

** Changed in: vlc (Ubuntu)
     Assignee: Simon Quigley (tsimonq2) => (unassigned)

** Changed in: vlc (Ubuntu Trusty)
     Assignee: (unassigned) => Simon Quigley (tsimonq2)

** Changed in: vlc (Ubuntu Xenial)
     Assignee: (unassigned) => Simon Quigley (tsimonq2)

** Changed in: vlc (Ubuntu Zesty)
     Assignee: (unassigned) => Simon Quigley (tsimonq2)

-- 
You received this bug notification because you are a member of नेपाली
भाषा समायोजकहरुको समूह, which is subscribed to Xenial.
Matching subscriptions: Ubuntu 16.04 Bugs
https://bugs.launchpad.net/bugs/1709420

Title:
  flac: Fix heap write overflow on frame format change

Status in vlc package in Ubuntu:
  Fix Released
Status in vlc source package in Trusty:
  In Progress
Status in vlc source package in Xenial:
  In Progress
Status in vlc source package in Zesty:
  In Progress

Bug description:
  plugins\codec\libflac_plugin.dll in VideoLAN VLC media player 2.2.4 allows
  remote attackers to cause a denial of service (heap corruption and
  application crash) or possibly have unspecified other impact via a crafted
  FLAC file.

  This is tracked in CVE-2017-9300.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/vlc/+bug/1709420/+subscriptions