Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

Please report security issues to the FreeBSD Security Team at . Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.


Entered Topic
2020-06-17 vlc heap-based buffer overflow
2020-04-29 vlc -- Multiple vulnerabilities fixed in VLC media player
2019-08-20 vlc -- multiple vulnerabilities
2019-06-20 vlc -- Buffer overflow vulnerability
vlc -- Double free in Matroska demuxer
2018-07-21 vlc -- Use after free vulnerability
2017-05-26 vlc -- remote code execution via crafted subtitles
2016-06-11 VLC -- Possibly remote code execution via crafted file
2015-08-20 vlc -- arbitrary pointer dereference vulnerability
2012-09-15 vlc -- arbitrary code execution in Real RTSP and MMS support
2011-04-17 VLC -- Heap corruption in MP4 demultiplexer
2011-02-02 vlc -- Insufficient input validation in MKV demuxer
2010-08-14 vlc -- invalid id3v2 tags may lead to invalid memory dereferencing
2010-05-01 vlc -- unintended code execution with specially crafted data
2009-11-03 vlc -- stack overflow in MPA, AVI and ASF demuxer
2008-11-08 vlc -- cue processing stack overflow
2007-06-18 vlc -- format string vulnerability and integer overflow