Bug#775866: vlc: multiple vulnerabilities
Sebastian Ramacher
sramacher at debian.org
Mon Jan 26 16:33:30 UTC 2015
On 2015-01-26 13:49:26, Moritz Mühlenhoff wrote:
> On Tue, Jan 20, 2015 at 09:47:26PM +0100, Yves-Alexis Perez wrote:
> > * The potential invalid writes in modules/services_discovery/sap.c and
> > modules/access/ftp.c were not fixed as I did not provide a
> > trigger. Note, that the code looks very similar to the confirmed bug
> > in rtp_packetize_xiph_config, and so I leave it to you to decide
> > whether you want to patch this.
>
> These have been assigned CVE-2015-1202 and CVE-2015-1203, could you contact
> upstream for the status of an upstream fix?
Just because they look similar, does not make them a vulnerability. The
format string for ftp_SendCommand is not attacker controlled. The reporter
still has not answered questions about how the invalid write in
modules/access/ftp.c could be triggered [1]. Similarly, the issue in
modules/services_discovery/sap.c lacks a trigger. The rather disturbing
thread can be found at [2].
Cheers
[1] https://mailman.videolan.org/pipermail/vlc-devel/2014-December/100674.html
[2] https://mailman.videolan.org/pipermail/vlc-devel/2014-December/100675.html
--
Sebastian Ramacher
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-multimedia-maintainers/attachments/20150126/5c6ce777/attachment.sig>
More information about the pkg-multimedia-maintainers
mailing list