Security update for vlc
This update for vlc fixes the following issues:
Update to 3.0.11.1:
- CVE-2020-13428: Fixed heap-based buffer overflow in the hxxx_AnnexB_to_xVC () (boo#1172727)
- CVE-2020-26664: Fixed heap-based buffer overflow in EbmlTypeDispatcher:send () (boo#1180755)
-
Submitted by
Dominique Leuenberger (dimstar)
Fixed bugs
bnc#1172727
VUL-0: CVE-2020-13428: vlc: heap-based buffer overflow in the hxxx_AnnexB_to_xVC function in modules/packetizer/hxxx_nal.c in VideoLAN VLC media player
bnc#1180755
VUL-0: CVE-2020-26664: vlc: A vulnerability in EbmlTypeDispatcher:send allows attackers to trigger a heap-based buffer overflow via a crafted .mkv file.
bnc#1133290
LTO: vlc build fails
