CyberSec.Space Logo
Back to CVE Browser

CVE-2016-5108

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1030%
EPSS Percentile3.14th
PublishedJun 8, 2016
Last ModifiedMay 6, 2026

Vulnerability Description

Buffer overflow in the DecodeAdpcmImaQT function in modules/codec/adpcm.c in VideoLAN VLC media player before 2.2.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted QuickTime IMA file.

Affected Platforms (CPE)

πŸ’»
Debian

Debian Linux

= 8.0
πŸ“¦
Videolan

Vlc Media Player

<= 2.2.3

References & Advisories

πŸ”— http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00045.html
πŸ”— http://www.debian.org/security/2016/dsa-3598
πŸ”— http://www.securityfocus.com/bid/90924
πŸ”— http://www.securitytracker.com/id/1036009
πŸ”— http://www.videolan.org/security/sa1601.html
πŸ”— https://security.gentoo.org/glsa/201701-39
πŸ”— http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00045.html
πŸ”— http://www.debian.org/security/2016/dsa-3598

Related Vulnerabilities

CVE-1999-069810.0

Denial of service in IP protocol logger (ippl) on Red Hat and Debian Linux.

CVE-2026-234628.8

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: HIDP: Fix possible UAF This fixes the following t...

CVE-2006-70948.5

ftpd, as used by Gentoo and Debian Linux, sets the gid to the effective uid instead of the effective group id before executing /bi...

CVE-2026-231717.8

In the Linux kernel, the following vulnerability has been resolved: bonding: fix use-after-free due to enslave fail after slave a...