CVE-2017-8310 log

Source
Severity Medium
Remote No
Type Denial of service
Description
Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2.x due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process (causing a denial of service) via a crafted subtitles file.
Group Package Affected Fixed Severity Status Ticket
AVG-283 vlc 2.2.4-9 2.2.6-1 High Fixed FS#54194
Date Advisory Group Package Severity Description
01 Jun 2017 ASA-201706-1 AVG-283 vlc High multiple issues
References
http://git.videolan.org/?p=vlc/vlc-2.2.git;a=commitdiff;h=7cac839692ab79dbfe5e4ebd4c4e37d9a8b1b328