Ubuntu Security Notice USN-6783-1

Ubuntu Security Notice USN-6783-1: Posted May 23, 2024; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 6783-1 - It was discovered that VLC incorrectly handled certain media files. A remote attacker could possibly use this issue to cause VLC to crash, resulting in a denial of service, or potential arbitrary code execution.; tags | advisory, remote, denial of service, arbitrary, code execution; systems | linux, ubuntu; advisories | CVE-2023-47359; SHA-256 | 74e3830e001942c2ddc6731929c011b922cbfa41a326dcc195908ced4f0613b9; Download | Favorite | View

Ubuntu Security Notice USN-6783-1

==========================================================================
Ubuntu Security Notice USN-6783-1
May 22, 2024

vlc vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 23.10
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS

Summary:

VLC could be made to crash or run programs if it received
specially crafted network traffic.

Software Description:
- vlc: multimedia player and streamer

Details:

It was discovered that VLC incorrectly handled certain media files.
A remote attacker could possibly use this issue to cause VLC to crash,
resulting in a denial of service, or potential arbitrary code execution.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 23.10
   vlc                             3.0.18-4ubuntu0.1
   vlc-plugin-base                 3.0.18-4ubuntu0.1

Ubuntu 22.04 LTS
   vlc                             3.0.16-1ubuntu0.1~esm2
                                   Available with Ubuntu Pro
   vlc-plugin-base                 3.0.16-1ubuntu0.1~esm2
                                   Available with Ubuntu Pro

Ubuntu 20.04 LTS
   vlc                             3.0.9.2-1ubuntu0.1~esm2
                                   Available with Ubuntu Pro
   vlc-plugin-base                 3.0.9.2-1ubuntu0.1~esm2
                                   Available with Ubuntu Pro

Ubuntu 18.04 LTS
   vlc                             3.0.8-0ubuntu18.04.1+esm2
                                   Available with Ubuntu Pro
   vlc-plugin-base                 3.0.8-0ubuntu18.04.1+esm2
                                   Available with Ubuntu Pro

Ubuntu 16.04 LTS
   vlc                             2.2.2-5ubuntu0.16.04.5+esm3
                                   Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References:
   https://ubuntu.com/security/notices/USN-6783-1
   CVE-2023-47359, CVE-2023-47360

Package Information:
   https://launchpad.net/ubuntu/+source/vlc/3.0.18-4ubuntu0.1

Top Authors In Last 30 Days

Red Hat 291 files
Ubuntu 74 files
Debian 15 files
Ahmet Umit Bayram 8 files
Amit Roy 4 files
Jann Horn 4 files
Google Security Research 4 files
tmrswrr 4 files
Furkan Eren Tetik 4 files
h00die 3 files

File Archives

Systems

AIX (429)
Apple (2,089)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,057)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,500)
HPUX (880)
iOS (375)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,005)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (16,061)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,574)
UNIX (9,417)
UnixWare (187)
Windows (6,662)
Other

Ubuntu Security Notice USN-6783-1

Ubuntu Security Notice USN-6783-1

File Archive:

June 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Ubuntu Security Notice USN-6783-1

Share This

Ubuntu Security Notice USN-6783-1

File Archive:

June 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems