Oval Definition:oval:com.ubuntu.trusty:def:20178311000
Revision Date:2017-05-23Version:1
Title:CVE-2017-8311 on Ubuntu 14.04 LTS (trusty) - medium.
Description:Potential heap based buffer overflow in ParseJSS in VideoLAN VLC before 2.2.5 due to skipping NULL terminator in an input string allows attackers to execute arbitrary code via a crafted subtitles file.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2017-8311
Platform(s):Ubuntu 14.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 14.04 LTS (trusty) is installed.
  • AND The 'vlc' package in trusty was vulnerable but has been fixed (note: '2.1.6-0ubuntu14.04.3').
  • BACK