Unrated severityNVD Advisory· Published Aug 25, 2015· Updated Jun 17, 2026
CVE-2015-5949
CVE-2015-5949
Description
VideoLAN VLC media player 2.2.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted 3GP file, which triggers the freeing of arbitrary pointers.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*range: <=2.2.1
- (no CPE)range: =2.2.1
Patches
Vulnerability mechanics
References
9- www.ocert.org/advisories/ocert-2015-009.htmlnvdUS Government Resource
- lists.opensuse.org/opensuse-security-announce/2016-02/msg00040.htmlnvd
- packetstormsecurity.com/files/133266/VLC-2.2.1-Arbitrary-Pointer-Dereference.htmlnvd
- www.debian.org/security/2015/dsa-3342nvd
- www.openwall.com/lists/oss-security/2015/08/20/3nvd
- www.openwall.com/lists/oss-security/2015/08/20/8nvd
- www.securityfocus.com/archive/1/536287/100/0/threadednvd
- git.videolan.orgnvd
- security.gentoo.org/glsa/201603-08nvd
News mentions
0No linked articles in our index yet.