Arch Linux

Please read this before reporting a bug:

Do NOT report bugs when a package is just outdated, or it is in Unsupported. Use the 'flag out of date' link on the package page, or the Mailing List.

REPEAT: Do NOT report bugs for outdated packages!

FS#63517 - [vlc] Security: Compromised videos may lead to code execution

Attached to Project: Arch Linux
Opened by Stephan Windmüller (windy) - Wednesday, 21 August 2019, 18:56 GMT
Last edited by Levente Polyak (anthraxx) - Tuesday, 10 September 2019, 20:42 GMT
Task Type Bug Report
Category Packages: Extra
Status Closed
Assigned To No-one
Architecture All
Severity Critical
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 0
Private No


VLC 3.0.8 contains fixes for some security issues. One of those could be used for code execution when a malicious file is opened (CVE-2019-13962).
This task depends upon

Closed by  Levente Polyak (anthraxx)
Tuesday, 10 September 2019, 20:42 GMT
Reason for closing:  Fixed
Additional comments about closing:  3.0.8-1
Comment by loqs (loqs) - Wednesday, 21 August 2019, 22:55 GMT
vlc 3.0.8-1 is now in extra