Geeks for your information News Software & Services News v
VLC Media Player 3.0.12 fixes multiple remote code execution flaws
VLC Media Player 3.0.12 fixes multiple remote code execution flaws
silversurfer Offline
Staff Member
******
Posts: 3,885
Threads: 3,283
Thanks Received: 5,064 in 3,838 posts
Thanks Given: 6,200
Joined: 12 September 18
#1
Information  20 January 21, 20:08
Quote:VideoLan released VLC Media Player 3.0.12 for Windows, Mac, and Linux last week with numerous improvements, features, and security fixes.
 
This release is a significant upgrade for Mac users as it provides native support for Apple Silicon and fixes audio distortion in macOS.
 
In addition to bug fixes and improvements, this release also fixes numerous security vulnerabilities reported by Zhen Zhou of the NSFOCUS Security Team.
 
These buffer overflow or invalid dereference vulnerabilities "could trigger either a crash of VLC or an arbitrary code execution with the privileges of the target user."
 
According to VideoLan's security bulletin, a remote user can exploit this vulnerability by creating specially crafted media files and tricking a user into opening them with VLC.
 
While VideoLan states that this vulnerability will likely crash VLC Media Player, they warn that attackers could use it to leak information or remotely execute commands on the device.

Read more: https://www.bleepingcomputer.com/news/so...ion-flaws/
[-] The following 1 user says Thank You to silversurfer for this post:
  • harlan4096
Find
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:

[-]
Recent Posts
NanaZip 6.0 Update 7 (6.0.1711.0)
NanaZip 6.0 Update...harlan4096 — 06:10
Vivaldi 7.9 Build 3970.64
Vivaldi 7.9 Build ...harlan4096 — 06:09
Thunderbird 150.0.2 & Thunderbird 140.10...
Thunderbird 150.0....harlan4096 — 06:08
Brave v1.90.121 (Chromium 148.0.7778.96)
Release v1.90.121 ...harlan4096 — 06:07
QOwnNotes
26.5.6 Note folde...Kool — 06:07

[-]
Birthdays
Today's Birthdays
avatar (39)omapek
avatar (48)Geraldtuh
Upcoming Birthdays
avatar (28)akiratoriyama
avatar (48)Jerrycix
avatar (40)awedoli
avatar (82)WinRARHowTo
avatar (38)owysykan
avatar (49)beautgok
avatar (39)axuben
avatar (45)talsmanthago
avatar (31)mocetor
avatar (46)piomaibhaict
avatar (51)kingbfef
avatar (38)izenesiq
avatar (40)ihijudu
avatar (45)tiojusop
avatar (42)Damiennug
avatar (40)acoraxe
avatar (49)contjrat
avatar (41)axylisyb
avatar (44)tukrublape
avatar (44)knigiJow
avatar (46)1stOnecal
avatar (50)Mirzojap
avatar (36)idilysaju
avatar (40)GregoryRog
avatar (45)mediumog
avatar (40)odukoromu
avatar (46)Joanna4589

[-]
Online Staff
There are no staff members currently online.

>