FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  321338
Date:      2013-06-19
Time:      21:56:56Z
Committer: jgh

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
e7d91a3c-a7c9-11df-870c-00242b513d7cvlc -- invalid id3v2 tags may lead to invalid memory dereferencing

VideoLAN project reports:

VLC fails to perform sufficient input validation when trying to extract some meta-informations about input media through ID3v2 tags. In the failure case, VLC attempt dereference an invalid memory address, and a crash will ensure.


Discovery 2010-07-29
Entry 2010-08-14
vlc
gt 0.9.0,3 lt 1.1.2_1,3

CVE-2010-2937
http://www.videolan.org/security/sa1004.html
e7d91a3c-a7c9-11df-870c-00242b513d7cvlc -- invalid id3v2 tags may lead to invalid memory dereferencing

VideoLAN project reports:

VLC fails to perform sufficient input validation when trying to extract some meta-informations about input media through ID3v2 tags. In the failure case, VLC attempt dereference an invalid memory address, and a crash will ensure.


Discovery 2010-07-29
Entry 2010-08-14
vlc
gt 0.9.0,3 lt 1.1.2_1,3

CVE-2010-2937
http://www.videolan.org/security/sa1004.html
62f36dfd-ff56-11e1-8821-001b2134ef46vlc -- arbitrary code execution in Real RTSP and MMS support

Jean-Baptiste Kempf, on behalf of the VideoLAN project reports:

If successful, a malicious third party could crash the VLC media player process. Arbitrary code execution could be possible on some systems.


Discovery 2012-03-12
Entry 2012-09-15
vlc
lt 2.0.1,3

http://www.videolan.org/security/sa1201.html
http://www.videolan.org/security/sa1202.html
CVE-2012-1775
CVE-2012-1776