The VideoLAN Forums

Discussion and support for VLC media player and friends

Skip to content

Why wasn't there a release to fix CVE-2015-5949?

For questions and discussion that is NOT (I repeat NOT) specific to a certain Operating System.
Post Reply
pacpac
New Cone
New Cone
Posts: 5
Joined: 15 Sep 2015 06:10

Why wasn't there a release to fix CVE-2015-5949?

Postby pacpac » 15 Sep 2015 06:24

I'm using VLC Player 2.2.1. About a month ago I received a security advisory of an arbitrary pointer dereference in VLC player. Though this issue was fixed in the repo over a month ago there hasn't been a VLC Player 2.2.2 released with the fix. Also the issue is not listed on your security page. Why not?
Top
pacpac
New Cone
New Cone
Posts: 5
Joined: 15 Sep 2015 06:10

Re: Why wasn't there a release to fix CVE-2015-5949?

Postby pacpac » 28 Sep 2015 07:40

Does nobody know the answer to this?
Top
pacpac
New Cone
New Cone
Posts: 5
Joined: 15 Sep 2015 06:10

Re: Why wasn't there a release to fix CVE-2015-5949?

Postby pacpac » 14 Oct 2015 07:52

Hello again, hate to be a bother, but can someone answer this? Is this an issue that can be exploited if I open in VLC player a video file I downloaded?
Top
pacpac
New Cone
New Cone
Posts: 5
Joined: 15 Sep 2015 06:10

Re: Why wasn't there a release to fix CVE-2015-5949?

Postby pacpac » 08 Dec 2015 21:00

So it's been over 3 months now, will no one address this?
Top
Post Reply

Return to “General VLC media player Troubleshooting”

Who is online

Users browsing this forum: No registered users and 38 guests

Powered by phpBB® Forum Software © phpBB Limited
GZIP: On