This script is Copyright (C) 2017 Tenable Network Security, Inc.
The remote openSUSE host is missing a security update.
This update for vlc fixes several issues.
This security issue was fixed :
- CVE-2017-9300: Heap corruption allowed remote attackers
to cause a denial of service or possibly have
unspecified other impact via a crafted FLAC file
These non-security issues were fixed :
- Stop depending on libkde4-devel: It's only used to find
the install path for kde4, but configure falls back to
the correct default for openSUSE anyway (boo#1057736).
- Disable vnc access module
See also :
Update the affected vlc packages.
Risk factor :
Medium / CVSS Base Score : 6.8