VLC VULNERABILITY: FAKE NEWS?

VLC, a popular open source media player for multiple platforms including Linux, was said to have a vulnerability that was left unpatched from about a year ago by a German researcher. The vulnerability was supposedly not even published to the VLC bug tracker itself but rather a third-party and it appears now that the vulnerability is actually a case of sensationalism. The president of VLC or VideoLan, Jean-Baptiste Kempf, stated that the vulnerability patched a year ago and thus could not be reproduced by him and his team in the latest release. The application version is at 3.0.7.1 at time of writing. Kempf also stated that the researcher was possibly using an outdated version of Ubuntu, citing a possible flaw found in a third-party library relating to VLC several months ago. This too was patched. Multiple articles and youtubers have commented on the hype, none of which seem to add anything new, however, an article on Slashdot says otherwise. The full article will be below.

https://slashdot.org/index2.pl?fhfilter=Linux

Leave a Reply


Vivaldi