Debian 10264 Published by

A vlc security update has been released for Debian GNU/Linux 9 Extended LTS to address a potential buffer overflow in the vnc module.



ELA-749-1 vlc security update

Package : vlc
Version : 3.0.17.4-0+deb9u2 (stretch)

Related CVEs :
CVE-2022-41325

Mitsurugi Heishiro found out that in VLC, multimedia player and streamer, a potential buffer overflow in the vnc module could trigger remote code execution if a malicious vnc URL is deliberately played.

  ELA-749-1 vlc security update