-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5165-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff June 20, 2022 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : vlc CVE ID : not yet available Multiple vulnerabilities were discovered in the VLC media player, which could result in the execution of arbitrary code or denial of service if a malformed file is opened. For the oldstable distribution (buster), this problem has been fixed in version 3.0.17.4-0+deb10u1. For the stable distribution (bullseye), this problem has been fixed in version 3.0.17.4-0+deb11u1. We recommend that you upgrade your vlc packages. For the detailed security status of vlc please refer to its security tracker page at: https://security-tracker.debian.org/tracker/vlc Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmKwRjcACgkQEMKTtsN8 TjaWHRAAo7JX2Cl7dsY++UxmCWi8JEdhlzfaL/k7m3coORLQSoWxLvpdap7qnrFj C2xt/iD/svK/zSWHPsvMTYvhrH1bzfkS3yf6XhCW2HE4Q3tIx1OYDCdnjOurMD8A pJ6TyCXQHLM67Fie1Pf7R5kXlPM83UZMDrnH8gcHBp6GKi13Fj/0CFDdnDT2OXhy x+o/Nepl47fIkagbSPggDWy4pKeOElFppWuGqtzLJAwQy7+A79p+W0YRPg5ykTGK l+dqIPDbj4ERZ0h7tizueJkDTHTwgpnexgfH3N+wbcyQja5XJaGQhl93uHR5OV2o ecZaad0lOchj6WEbztU1SeY/c5RZk1Hbknmocn+ghTx+6baUf20uJxJoA6ki86v/ YQ8LAQOA/SwcA/akS0tC5BNNnMVgqktWX9zdgidRNuhjcGLYjSN75oBD5i1x9qZu oZHlqIUWL5ynut7FG0cIXzFgM9QH60O1ewFbW0w5Sz4dvHPLaM0iMMWTdFskwEjT nn3pozqiHoJjZJIs825TDYf+BSd0lUSTdKpY5CNU+yC3yN14gHUYl/3aIvZL7284 GzD1cxUUXMj0rK2LENkR+KYIf8ZcmnBsTslqGjJtzfUTcBFVG9h3+9/rmiVX/QeW Z2/mNBDHjzpEut2G2hTmMqssDB7FgeaqamZ8YQZKGnulY1O5rho= =I7KP -----END PGP SIGNATURE-----