VLC Media Player 3.0.8 was officially released with 13 security fixes

VideoLan has just launched VLC Media Player 3.0.8 and now this update is available for download for popular operating systems like Windows, Mac and Linux.

VideoLan has just launched VLC Media Player 3.0.8 and now this update is available for download for popular operating systems like Windows, Mac and Linux. VLC Media Player 3.0.8 was released to fix 13 security vulnerabilities that have been recorded, as well as provide some additional improvements in the way videos are played.

Major improvements in this release include fixing stuttering while watching videos at low frame rates, supporting better live streaming, fixed subtitle rendering of WebVTT, improved top sound quality. output on macOS and iOS versions.

More importantly, this release successfully patched 13 simple to severe vulnerabilities that were recorded on current versions, including buffer overflow, null after free, invalid nullification, and some other vulnerabilities. Most of these 13 vulnerabilities are directly detected by VLC developers.

  1. New vulnerability in Mozilla Firefox allows third parties to access a saved password store

VLC Media Player 3.0.8 was officially released with 13 security fixes Picture 1VLC Media Player 3.0.8 was officially released with 13 security fixes Picture 1 Up to 13 vulnerabilities have been found on the current version of VLC Media Player

According to the content posted in VideoLan's security bulletin, these vulnerabilities can be exploited by a remote attacker, by spreading a specially crafted malicious file and tricking the victim into opening it. . As follows:

"If you mislead the victim to open the malicious file, the attacker can completely trigger the problem in VLC code, or execute arbitrary code with the target user privileges.

Although this attack normally only causes player errors, VLC Media Player cannot work, but we do not exclude the possibility that it can be combined with some form of attack. more to leak user information or execute remote code on the victim's system. ASLR and DEP reduce code execution, but can be ignored. "

VideoLan has not recorded any instances of code execution through the above mentioned vulnerabilities. However, users should still update their VLC Media Player application to the new version to limit any potential risks that may occur.

  1. Many serious vulnerabilities have been discovered that allow attackers to take full control of the 4G router

VLC Media Player 3.0.8 was officially released with 13 security fixes Picture 2VLC Media Player 3.0.8 was officially released with 13 security fixes Picture 2 VLC Media Player 3.0.8 can be downloaded now

You can download VLC Media Player version 3.0.8 at this address.

5 ★ | 2 Vote