VulnerableCode Package Details - pkg:alpm/archlinux/vlc@2.2.6-1

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-ajtu-rm8v-aaam	Potential heap based buffer overflow in ParseJSS in VideoLAN VLC before 2.2.5 due to skipping NULL terminator in an input string allows attackers to execute arbitrary code via a crafted subtitles file.	CVE-2017-8311
VCID-ge3g-m8dt-aaag	Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2.x due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process (causing a denial of service) via a crafted subtitles file.	CVE-2017-8310
VCID-nkp7-xrsb-aaaj	Heap out-of-bound read in ParseJSS in VideoLAN VLC due to missing check of string length allows attackers to read heap uninitialized data via a crafted subtitles file.	CVE-2017-8312

Vulnerability

Summary

Aliases

VCID-ajtu-rm8v-aaam

Potential heap based buffer overflow in ParseJSS in VideoLAN VLC before 2.2.5 due to skipping NULL terminator in an input string allows attackers to execute arbitrary code via a crafted subtitles file.

CVE-2017-8311

VCID-ge3g-m8dt-aaag

Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2.x due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process (causing a denial of service) via a crafted subtitles file.

CVE-2017-8310

VCID-nkp7-xrsb-aaaj

Heap out-of-bound read in ParseJSS in VideoLAN VLC due to missing check of string length allows attackers to read heap uninitialized data via a crafted subtitles file.

CVE-2017-8312

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:46:12.624690+00:00	Arch Linux Importer	Fixing	VCID-ge3g-m8dt-aaag	https://security.archlinux.org/AVG-283	36.0.0
2025-03-28T07:46:12.604323+00:00	Arch Linux Importer	Fixing	VCID-ajtu-rm8v-aaam	https://security.archlinux.org/AVG-283	36.0.0
2025-03-28T07:46:12.583984+00:00	Arch Linux Importer	Fixing	VCID-nkp7-xrsb-aaaj	https://security.archlinux.org/AVG-283	36.0.0
2024-09-18T02:01:22.784783+00:00	Arch Linux Importer	Fixing	VCID-ge3g-m8dt-aaag	https://security.archlinux.org/AVG-283	34.0.1
2024-09-18T02:01:22.751215+00:00	Arch Linux Importer	Fixing	VCID-ajtu-rm8v-aaam	https://security.archlinux.org/AVG-283	34.0.1
2024-09-18T02:01:22.718338+00:00	Arch Linux Importer	Fixing	VCID-nkp7-xrsb-aaaj	https://security.archlinux.org/AVG-283	34.0.1
2024-01-24T11:41:55.596820+00:00	Arch Linux Importer	Fixing	VCID-ge3g-m8dt-aaag	https://security.archlinux.org/AVG-283	34.0.0rc2
2024-01-24T11:41:55.574899+00:00	Arch Linux Importer	Fixing	VCID-ajtu-rm8v-aaam	https://security.archlinux.org/AVG-283	34.0.0rc2
2024-01-24T11:41:55.552876+00:00	Arch Linux Importer	Fixing	VCID-nkp7-xrsb-aaaj	https://security.archlinux.org/AVG-283	34.0.0rc2
2024-01-03T22:27:33.111413+00:00	Arch Linux Importer	Fixing	VCID-ge3g-m8dt-aaag	https://security.archlinux.org/AVG-283	34.0.0rc1
2024-01-03T22:27:33.085480+00:00	Arch Linux Importer	Fixing	VCID-ajtu-rm8v-aaam	https://security.archlinux.org/AVG-283	34.0.0rc1
2024-01-03T22:27:33.061747+00:00	Arch Linux Importer	Fixing	VCID-nkp7-xrsb-aaaj	https://security.archlinux.org/AVG-283	34.0.0rc1