vlc (2.2.7-1~deb8u1) jessie-security; urgency=high * New upstream release. - Fix crash in libavcodec module (heap write out-of band). (CVE-2017-10699) - Fix flac heap write overflow on format change. (CVE-2017-9300) - Fix AVI read/write overflow. -- Sebastian Ramacher <email address hidden> Sun, 19 Nov 2017 16:28:34 +0100