[ / / / / / / / / / / / / / ] [ dir / animu / hentai / htg / hydrus / kind / pdfs / sapphic / sl ][Options][ watchlist ]

/tech/ - Technology

You can now write text to your AI-generated image at https://aiproto.com It is currently free to use for Proto members.
Email
Comment *
File
Select/drop/paste files here
Password (Randomized for file and post deletion; you may also set your own.)
Archive
* = required field[▶ Show post options & limits]
Confused? See the FAQ.
Expand all images

File (hide): 244cd53377c6483⋯.jpg (69.68 KB, 728x380, 182:95, VLC player.jpg) (h) (u)

[–]

 No.1082860>>1082894 [Watch Thread][Show All Posts]

21:02:48 9fd7a0 No.13556675[Watch Thread][Feature Thread][Show All Posts]

VideoLAN pointed ZDNet towards a Twitter feed in response, saying that "there is no security issue in [the] last version of VLC," and instead, a mistake from MITRE and CERT_BUND is at fault.

A serious vulnerability has been uncovered in the latest release of the VLC media player and no patch is available.

Non-profit VideoLAN's VLC player is popular software used to both play and convert a variety of audio and visual files. Available for Windows, Linux, Mac OS X, Unix, iOS, and Android systems, the open-source media player has now become the focus of a recent security advisory released by the German Computer Emergency Response Team (CERT-Bund).

"A remote, anonymous attacker can exploit the vulnerability in VLC to execute arbitrary code, cause a denial-of-service condition, exfiltrate information, or manipulate files," as noted by ESET.

The vulnerability is known to exist in the latest version of VLC on Windows, Linux, and Unix machines, but it is possible the bug is also present in past builds.

https://www.zdnet.com/article/remote-code-execution-vulnerability-in-vlc-remains-unpatched/

____________________________
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.

 No.1082894

>>1082860 (OP)

OP is a retard.

>About the "security issue" on #VLC : VLC is not vulnerable.

>tl;dr: the issue is in a 3rd party library, called libebml, which was fixed more than 16 months ago.

>VLC since version 3.0.3 has the correct version shipped, and @MITREcorp did not even check their claim.

https://mobile.twitter.com/videolan/status/1153963312981389312

The current version of vlc is 3.0.7.1 and version 3.0.3 was released over a year ago.

Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.


[Return][Go to top][Catalog][Screencap][Nerve Center][Update] ( Scroll to new posts) ( Auto) 5
1 replies | 0 images | Page ?
[Post a Reply]
[ / / / / / / / / / / / / / ] [ dir / animu / hentai / htg / hydrus / kind / pdfs / sapphic / sl ][ watchlist ]