Vulnerabilities

CVE-2017-8313

by Fred · 23/05/2017

Heap out-of-bound read in ParseJSS in VideoLAN VLC before 2.2.5 due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process via a crafted subtitles file.

Date published : 2017-05-23

http://www.securityfocus.com/bid/98633

http://git.videolan.org/?p=vlc/vlc-2.2.git;a=commitdiff;h=05b653355ce303ada3b5e0e645ae717fea39186c

Similar

Tags: Cybersecurity Alert