Download
| Alert*
oval:org.secpod.oval:def:20741
The host is installed with VideoLAN VLC Media Player before 0.8.6g and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle an ID3_FIELD_TYPE_STRINGLIST field that ends in '\0', which triggers an infinite loop. Successful exploitation allows contex ... oval:org.secpod.oval:def:301404 field.c in the libid3tag 0.15.0b library allows context-dependent attackers to cause a denial of service via an ID3_FIELD_TYPE_STRINGLIST field that ends in "\0", which triggers an infinite loop. The updated packages have been patched to correct this. |