CVE-2018-11529

Name of the Vulnerable Software and Affected Versions VideoLAN VLC media player versions 2.2.x

Description The issue is related to a use after free vulnerability. This can be exploited by an attacker to execute arbitrary code using specially crafted mkv files. Failed attempts to exploit this issue may result in denial of service conditions.

Recommendations For version 2.2.x, consider avoiding the use of mkv files until a patch is available. As a temporary workaround, restrict the use of potentially vulnerable functions related to mkv file processing to minimize the risk of exploitation.