A buffer overflow vulnerability in the _Parseindx component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause an out-of-bounds read via a crafted .avi file.
{ "urgency": "not yet assigned" }