CVE-2011-0522
Priority
Medium
Description
The StripTags function in (1) the USF decoder
(modules/codec/subtitles/subsdec.c) and (2) the Text decoder
(modules/codec/subtitles/subsusf.c) in VideoLAN VLC Media Player 1.1 before
1.1.6-rc allows remote attackers to execute arbitrary code via a subtitle
with an opening "<" without a closing ">" in an MKV file, which triggers
heap memory corruption, as demonstrated using
refined-australia-blu720p-sample.mkv.
(modules/codec/subtitles/subsdec.c) and (2) the Text decoder
(modules/codec/subtitles/subsusf.c) in VideoLAN VLC Media Player 1.1 before
1.1.6-rc allows remote attackers to execute arbitrary code via a subtitle
with an opening "<" without a closing ">" in an MKV file, which triggers
heap memory corruption, as demonstrated using
refined-australia-blu720p-sample.mkv.
References
Package
| Upstream: | needs-triage |
| Ubuntu 8.04 LTS (Hardy Heron): | ignored (reached end-of-life) |
| Ubuntu 10.04 LTS (Lucid Lynx): | released (1.0.6-1ubuntu1.4) |
| Ubuntu 11.04 (Natty Narwhal): | not-affected (1.1.6-1ubuntu1) |
| Ubuntu 11.10 (Oneiric Ocelot): | not-affected (1.1.6-1ubuntu1) |
Patches:
| Upstream: | http://git.videolan.org/gitweb.cgi?p=vlc/vlc-1.1.git;a=commit;h=dc14617f39c03bbe80c3cc4f92799dca840966eb |