Candidate: CVE-2010-3275
PublicDate: 2011-03-28 16:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3275
 http://www.videolan.org/vlc/releases/1.1.8.html
 http://www.coresecurity.com/content/vlc-vulnerabilities-amv-nsv-files
Description:
 libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows
 remote attackers to execute arbitrary code via a crafted width in an AMV
 file, related to a "dangling pointer vulnerability."
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_vlc:
 upstream: http://git.videolan.org/?p=vlc/vlc-1.1.git;a=commitdiff;h=fe44129dc6509b3347113ab0e1a0524af1e0dd11
upstream_vlc: released (1.1.8)
dapper_vlc: ignored (reached end-of-life)
hardy_vlc: ignored (reached end-of-life)
karmic_vlc: ignored (reached end-of-life)
lucid_vlc: released (1.0.6-1ubuntu1.6)
maverick_vlc: released (1.1.4-1ubuntu1.5)
natty_vlc: not-affected (1.1.8-1ubuntu1)
devel_vlc: not-affected (1.1.8-1ubuntu1)