CVE-2012-0023
Published: 30 October 2012
Double free vulnerability in the get_chunk_header function in modules/demux/ty.c in VideoLAN VLC media player 0.9.0 through 1.1.12 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TiVo (TY) file.
Priority
Status
Package | Release | Status |
---|---|---|
vlc Launchpad, Ubuntu, Debian |
hardy |
Ignored
(end of life)
|
lucid |
Ignored
(end of life)
|
|
maverick |
Ignored
(end of life)
|
|
natty |
Ignored
(end of life)
|
|
oneiric |
Ignored
(end of life)
|
|
precise |
Not vulnerable
(1.1.13-1)
|
|
quantal |
Not vulnerable
(1.1.13-1)
|
|
raring |
Not vulnerable
(1.1.13-1)
|
|
saucy |
Not vulnerable
(1.1.13-1)
|
|
upstream |
Released
(1.1.13)
|