[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-OPENSUSE-SU-2023:0365-1":6},{"stargazers_count":4,"fetched_at":5},5,"2026-04-04T21:10:30.191Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":18,"duplicates":19,"related":20,"reserved_at":9,"published_at":23,"modified_at":24,"state":9,"summary":25,"references_raw":27,"kevs":44,"epss":9,"epss_history":45,"metrics":46,"affected":47},"OPENSUSE-SU-2023:0365-1","Security update for vlc\n\nThis update for vlc fixes the following issues:\n\nUpdate to version 3.0.20:\n\n+ Video Output:\n  - Fix green line in fullscreen in D3D11 video output\n  - Fix crash with some AMD drivers old versions\n  - Fix events propagation issue when double-clicking with mouse wheel\n+ Decoders:\n  - Fix crash when AV1 hardware decoder fails\n+ Interface:\n  - Fix annoying disappearance of the Windows fullscreen controller\n+ Demuxers:\n  - Fix potential security issue (OOB Write) on MMS:// by checking user size bounds\n\nUpdate to version 3.0.19:\n\n+ Core: \n  - Fix next-frame freezing in most scenarios\n+ Demux: \n  - Support RIFF INFO tags for Wav files\n  - Fix AVI files with flipped RAW video planes\n  - Fix duration on short and small Ogg/Opus files\n  - Fix some HLS/TS streams with ID3 prefix\n  - Fix some HLS playlist refresh drift\n  - Fix for GoPro MAX spatial metadata\n  - Improve FFmpeg-muxed MP4 chapters handling\n  - Improve playback for QNap-produced AVI files\n  - Improve playback of some old RealVideo files\n  - Fix duration probing on some MP4 with missing information\n+ Decoders:\n  - Multiple fixes on AAC handling\n  - Activate hardware decoding of AV1 on Windows (DxVA)\n  - Improve AV1 HDR support with software decoding\n  - Fix some AV1 GBRP streams, AV1 super-resolution streams and monochrome ones\n  - Fix black screen on poorly edited MP4 files on Android Mediacodec\n  - Fix rawvid video in NV12\n  - Fix several issues on Windows hardware decoding (including 'too large resolution in DxVA')\n  - Improve crunchyroll-produced SSA rendering\n+ Video Output:\n  - Super Resolution scaling with nVidia and Intel GPUs\n  - Fix for an issue when cropping on Direct3D9\n  - Multiple fixes for hardware decoding on D3D11 and OpenGL interop\n  - Fix an issue when playing -90�rotated video\n  - Fix subtitles rendering blur on recent macOS\n+ Input:\n  - Improve SMB compatibility with Windows 11 hosts\n+ Contribs:\n  - Update of fluidlite, fixing some MIDI rendering on Windows\n  - Update of zlib to 1.2.13 (CVE-2022-37434)\n  - Update of FFmpeg, vpx (CVE-2023-5217), ebml, dav1d, libass\n+ Misc:\n  - Improve muxing timestamps in a few formats (reset to 0)\n  - Fix some rendering issues on Linux with the fullscreen controller\n  - Fix GOOM visualization\n  - Fixes for Youtube playback\n  - Fix some MPRIS inconsistencies that broke some OS widgets on Linux\n  - Implement MPRIS TrackList signals\n  - Fix opening files in read-only mode\n  - Fix password search using the Kwallet backend\n  - Fix some crashes on macOS when switching application\n  - Fix 5.1/7.1 output on macOS and tvOS\n  - Fix several crashes and bugs in the macOS preferences panel\n  - Improvements on the threading of the MMDevice audio output on Windows\n  - Fix a potential security issue on the uninstaller DLLs\n  - Fix memory leaks when using the media_list_player libVLC APIs\n+ Translations:\n  - Update of most translations\n  - New translations to Esperanto, Interlingue, Lao, Macedonian, Burmese, Odia, Samoan and Swahili\n",null,[],[],[],[14,16],{"_key":15},"CVE-2022-37434",{"_key":17},"CVE-2023-5217",[],[],[21,22],{"_key":15},{"_key":17},"2023-11-12T13:00:59Z","2026-02-04T04:23:48.158890Z",{"cisa_kev":26,"cisa_ransomware":26,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[28,35,40],{"url":29,"sources":30,"tags":33},"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/4PHTZYGRNV6PDZMHUALPCK2YD6IRL3XD/",[31,32],"osv_suse","osv_opensuse",[34],"Advisory",{"url":36,"sources":37,"tags":38},"https://www.suse.com/security/cve/CVE-2022-37434",[31,32],[39],"WEB",{"url":41,"sources":42,"tags":43},"https://www.suse.com/security/cve/CVE-2023-5217",[31,32],[39],[],[],[],[48,61],{"ecosystem":49,"name":50,"vendor":51,"product":52,"cpe_part":9,"purl_type":53,"purl_namespace":51,"purl_name":52,"source":9,"versions":54},"openSUSE","vlc","opensuse","vlc&distro=openSUSE Leap 15.4","rpm",[55],{"version":56,"is_range":57,"range_type":58,"version_start":9,"version_start_type":9,"version_end":59,"version_end_type":60,"fixed_in":9},"lt3_0_20_bp154_2_6_1",true,"ecosystem","3.0.20-bp154.2.6.1","excluding",{"ecosystem":62,"name":50,"vendor":63,"product":64,"cpe_part":9,"purl_type":53,"purl_namespace":63,"purl_name":64,"source":9,"versions":65},"SUSE Linux Enterprise","suse","vlc&distro=SUSE Package Hub 15 SP4",[66],{"version":56,"is_range":57,"range_type":58,"version_start":9,"version_start_type":9,"version_end":59,"version_end_type":60,"fixed_in":9}]