vulnerability

Ubuntu: USN-6180-1 (CVE-2021-25802): VLC media player vulnerabilities

Severity
6
CVSS
(AV:N/AC:M/Au:N/C:P/I:N/A:P)
Published
Jul 26, 2021
Added
Jun 21, 2023
Modified
Jan 23, 2025

Description

A buffer overflow vulnerability in the AVI_ExtractSubtitle component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause an out-of-bounds read via a crafted .avi file.

Solution(s)

ubuntu-pro-upgrade-vlcubuntu-pro-upgrade-vlc-plugin-access-extra
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.