ID CVE-2016-1515
Summary ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2015-8789. Reason: This candidate is a reservation duplicate of CVE-2015-8789. Notes: All CVE users should reference CVE-2015-8789 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.
Vulnerable Configurations
nessus via4
NASL family SuSE Local Security Checks
description This update for vlc to 2.2.4 to fix the following security issue : - CVE-2016-5108: Fix out-of-bound write in adpcm QT IMA codec (boo#984382). This also include an update of codecs and libraries to fix these 3rd party security issues : - CVE-2016-1514: Matroska libebml EbmlUnicodeString Heap Information Leak - CVE-2016-1515: Matroska libebml Multiple ElementList Double Free Vulnerabilities - CVE-2015-7981: The png_convert_to_rfc1123 function in png.c in libpng allowed remote attackers to obtain sensitive process memory information via crafted tIME chunk data in an image file, which triggers an out-of-bounds read (bsc#952051). - CVE-2015-8126: Multiple buffer overflows in the (1) png_set_PLTE and (2) png_get_PLTE functions in libpng allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a small bit-depth value in an IHDR (aka image header) chunk in a PNG image (bsc#954980).
last seen 2019-02-21
modified 2016-10-13
plugin id 91772
published 2016-06-23
reporter Tenable
title openSUSE Security Update : vlc (openSUSE-2016-754)
talos via4
id TALOS-2016-0037
last seen 2017-07-26
published 2016-01-28
reporter Talos Intelligence
title Matroska Media Container libmatroska Multiple ElementList Double Free Vulnerabilities
Last major update 19-01-2017 - 21:59
Published 06-01-2017 - 16:59
Back to Top