Candidate: CVE-2013-1954
PublicDate: 2013-07-10 19:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1954
 http://www.videolan.org/security/sa1302.html
Description:
 The ASF Demuxer (modules/demux/asf/asf.c) in VideoLAN VLC media player
 2.0.5 and earlier allows remote attackers to cause a denial of service
 (crash) and possibly execute arbitrary code via a crafted ASF movie that
 triggers an out-of-bounds read.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=705136
Priority: medium
Discovered-by: Debasish Mandal
Assigned-to:
CVSS: 

Patches_vlc:
 upstream: http://git.videolan.org/?p=vlc.git;a=commit;h=b31ce523331aa3a6e620b68cdfe3f161d519631e
upstream_vlc: released (2.0.6-1)
hardy_vlc: ignored (reached end-of-life)
lucid_vlc: ignored (reached end-of-life)
oneiric_vlc: ignored (reached end-of-life)
precise_vlc: released (2.0.8-0ubuntu0.12.04.1)
quantal_vlc: released (2.0.8-0ubuntu0.12.10.1)
raring_vlc: not-affected (2.0.6-1)
saucy_vlc: not-affected (2.0.6-1)
devel_vlc: not-affected (2.0.6-1)