[Buildroot] [PATCH] vlc: add upstream security patches fixing CVE-2017-10699

Peter Korsgaard peter at korsgaard.com
Mon Jul 3 20:00:51 UTC 2017


>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:

 > avcodec 2.2.x, as used in VideoLAN VLC media player 2.2.7-x before
 > 2017-06-29, allows out-of-bounds heap memory write due to calling memcpy()
 > with a wrong size, leading to a denial of service (application crash) or
 > possibly code execution.

 > https://trac.videolan.org/vlc/ticket/18467

 > Signed-off-by: Peter Korsgaard <peter at korsgaard.com>

Committed, thanks.

-- 
Bye, Peter Korsgaard


More information about the buildroot mailing list