CVE-2012-5470
EPSS 17.0%
Description
libpng_plugin in VideoLAN VLC media player 2.0.3 allows remote attackers to cause a denial of service (application crash) via a crafted PNG file.
How to fix CVE-2012-5470
To remediate CVE-2012-5470, upgrade the affected package to a fixed version below.
- Debian/vlc—upgrade to 2.0.4-1 or later
Is CVE-2012-5470 being exploited?
Moderate — EPSS is 17.0%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (1)
- from 0, < 2.0.4-1