openSUSE-SU-2022:10252-1

See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2022:10252-1.json
JSON Data
https://api.osv.dev/v1/vulns/openSUSE-SU-2022:10252-1
Related
Published
2022-12-27T09:00:21Z
Modified
2022-12-27T09:00:21Z
Summary
Security update for vlc
Details

This update for vlc fixes the following issues:

  • Update to version 3.0.18 (CVE-2022-41325, boo#1206142):
    • macOS: Fix audio device listing with non-latin names.
    • Misc: Fix rendering and performance issue with older GPUs.
    • Updated translations.
  • Changes from version 3.0.18-rc2:
    • Codec/Demux:
      • Add support for Y16 chroma.
      • Fix build of gme plugin.
    • Lua:
      • Fix script for vocaroo.
      • Fix script for youtube to allow throttled playback.
    • Service Discovery: Fix UPnP regression on Windows.
    • Video Output: Fix video placement with caopengllayer.
    • Misc: Fix password search in kwallet module.
  • Changes from version 3.0.18-rc:
    • Demux:
      • Major adaptive streaming update, notably for multiple timelies and webvtt.
      • Fix seeking with some fragmented MP4 files.
      • Add support for DVBSub inside MKV.
      • Fix some Flac files that could not be played.
      • Improve seeking in Ogg files.
    • Decoders:
      • Fix DxVA/D3D11 crashes on HEVC files with bogus references.
      • Fix libass storage size and crash.
      • Fix decoding errors on macOS hw decoding on some HEVC files.
    • Video Output:
      • Fix color regression with VAAPI/iOS and OpenGL output.
      • Fix some resizing issues with OpenGL on GLX/EGL/X11/XV.
      • Fix Direct3d9 texture stretching.
      • Fix 10-bit accelerated video filters on macOS.
    • Playlist: Avoid playlist liveloop on failed/tiny items (temporize EOS bursts).
    • Misc:
      • Misc fixes for the extension UI on macOS.
      • Improve SMBv1 and SMBv2 behaviours.
      • Improve FTP compatibility.
      • Support RISC-V.
      • Fix AVI muxing for Windows Media Player compatibility.
      • Fix seeking speed on macOS.
References

Affected packages

SUSE:Package Hub 15 SP3 / vlc

Package

Name
vlc
Purl
purl:rpm/suse/vlc&distro=SUSE%20Package%20Hub%2015%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.18-bp153.2.6.1

Ecosystem specific

{
    "binaries": [
        {
            "libvlccore9": "3.0.18-bp153.2.6.1",
            "vlc-jack": "3.0.18-bp153.2.6.1",
            "vlc-codec-gstreamer": "3.0.18-bp153.2.6.1",
            "vlc": "3.0.18-bp153.2.6.1",
            "vlc-devel": "3.0.18-bp153.2.6.1",
            "vlc-vdpau": "3.0.18-bp153.2.6.1",
            "vlc-qt": "3.0.18-bp153.2.6.1",
            "vlc-lang": "3.0.18-bp153.2.6.1",
            "vlc-noX": "3.0.18-bp153.2.6.1",
            "vlc-opencv": "3.0.18-bp153.2.6.1",
            "libvlc5": "3.0.18-bp153.2.6.1"
        }
    ]
}

openSUSE:Leap 15.3 / vlc

Package

Name
vlc
Purl
purl:rpm/suse/vlc&distro=openSUSE%20Leap%2015.3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.18-bp153.2.6.1

Ecosystem specific

{
    "binaries": [
        {
            "libvlccore9": "3.0.18-bp153.2.6.1",
            "vlc-jack": "3.0.18-bp153.2.6.1",
            "vlc-codec-gstreamer": "3.0.18-bp153.2.6.1",
            "vlc": "3.0.18-bp153.2.6.1",
            "vlc-devel": "3.0.18-bp153.2.6.1",
            "vlc-vdpau": "3.0.18-bp153.2.6.1",
            "vlc-qt": "3.0.18-bp153.2.6.1",
            "vlc-lang": "3.0.18-bp153.2.6.1",
            "vlc-noX": "3.0.18-bp153.2.6.1",
            "vlc-opencv": "3.0.18-bp153.2.6.1",
            "libvlc5": "3.0.18-bp153.2.6.1"
        }
    ]
}