ID CVE-2016-1515
Summary ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2015-8789. Reason: This candidate is a reservation duplicate of CVE-2015-8789. Notes: All CVE users should reference CVE-2015-8789 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.
References
Vulnerable Configurations
CVSS
Base:
Impact:
Exploitability:
nessus via4
NASL family SuSE Local Security Checks
NASL id OPENSUSE-2016-754.NASL
description This update for vlc to 2.2.4 to fix the following security issue : - CVE-2016-5108: Fix out-of-bound write in adpcm QT IMA codec (boo#984382). This also include an update of codecs and libraries to fix these 3rd party security issues : - CVE-2016-1514: Matroska libebml EbmlUnicodeString Heap Information Leak - CVE-2016-1515: Matroska libebml Multiple ElementList Double Free Vulnerabilities - CVE-2015-7981: The png_convert_to_rfc1123 function in png.c in libpng allowed remote attackers to obtain sensitive process memory information via crafted tIME chunk data in an image file, which triggers an out-of-bounds read (bsc#952051). - CVE-2015-8126: Multiple buffer overflows in the (1) png_set_PLTE and (2) png_get_PLTE functions in libpng allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a small bit-depth value in an IHDR (aka image header) chunk in a PNG image (bsc#954980).
last seen 2019-02-21
modified 2016-10-13
plugin id 91772
published 2016-06-23
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=91772
title openSUSE Security Update : vlc (openSUSE-2016-754)
talos via4
id TALOS-2016-0037
last seen 2017-07-26
published 2016-01-28
reporter Talos Intelligence
source http://www.talosintelligence.com/vulnerability_reports/TALOS-2016-0037
title Matroska Media Container libmatroska Multiple ElementList Double Free Vulnerabilities
Last major update 19-01-2017 - 21:59
Published 06-01-2017 - 16:59
Back to Top