CVE-2017-9300 log

Severity High
Remote Yes
Type Arbitrary code execution
It was discovered that plugins\codec\ in VideoLAN VLC media player before 2.2.7 allows remote attackers to cause a heap corruption and application crash leading to denial of service or possibly execution of arbitrary code via a crafted FLAC file.
Group Package Affected Fixed Severity Status Ticket
AVG-533 vlc 2.2.6-5 2.2.7-1 Critical Fixed
Date Advisory Group Package Severity Type
07 Dec 2017 ASA-201712-4 AVG-533 vlc Critical arbitrary code execution