CVE-2012-2396

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2012-2396 at MITRE

Description

VideoLAN VLC media player 2.0.1 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted MP4 file.

SUSE information

CVSS v2 Scores
  National Vulnerability Database
Base Score 4.30
Vector AV:N/AC:M/Au:N/C:N/I:N/A:P
Access Vector Network
Access Complexity Medium
Authentication None
Confidentiality Impact None
Integrity Impact None
Availability Impact Partial
SUSE Bugzilla entry: 760496 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
openSUSE 11.4
  • taglib >= 1.6.2-10.1
  • taglib-32bit >= 1.6.2-10.1
  • taglib-debuginfo >= 1.6.2-10.1
  • taglib-debuginfo-32bit >= 1.6.2-10.1
  • taglib-debuginfo-x86 >= 1.6.2-10.1
  • taglib-debugsource >= 1.6.2-10.1
  • taglib-devel >= 1.6.2-10.1
  • taglib-x86 >= 1.6.2-10.1
Patchnames:
openSUSE-2012-275