VLC, the exceptional open-source media player that pretty much runs on everything, has been one of the first programs I install on a new computer or smartphone for years. It's simple, powerful and free—I couldn't ask for anything more. Well, except maybe not having it play host to a
critical (See update below) security vulnerability
Discovered by German security agency CERT-Bund (via WinFuture), a new flaw in VLC (listed as CVE-2019-13615) that has been given a base vulnerability score of 9.8, which classifies it as “critical.”
The vulnerability allows for RCE (remote code execution) which potentially allows bad actors attackers to install, modify, or run software without authorization, and could also be used to disclose files on the host system. Translation: VLC’s security hole could allow hackers to hijack your computer and see your files.
VideoLAN, makers of VLC, tweeted
to say that VLC is not vulnerable.
"About the "security issue" on #VLC : VLC is not vulnerable. tl;dr: the issue is in a 3rd party library, called libebml, which was fixed more than 16 months ago.VLC since version 3.0.3 has the correct version shipped, and @MITREcorp did not even check their claim.
Gizmodo reports that the National Vulnerability Database's entry for the bug was downgraded, specifying that the “Victim must voluntarily interact with attack mechanism.”
This post has been corrected to reflect VideoLAN's debunking of the security researchers' claims — Rob Beschizza
In the early 1980s, Susan Kare joined Apple Computer to design fonts and user interface graphics. A legend of pixel art, Kare created the look of the original Macintosh, from the Chicago typeface to the Trash Can to the Happy Mac icon. She’s currently creative director at Pinterest. David Kindy profiles Kare in Smithsonian: Pioneering […]
The largest universal quantum computer available for external use will delivered in October 2019, IBM announced today.
Inside Bill’s Brain: Decoding Bill Gates is a new three-part documentary that premieres on September 20. It’s directed by Davis Guggenheim who produced An Inconvenient Truth and directed Waiting for Superman. “When I thought about topics to cover, I knew I didn’t want to make a promotional piece about his work,” Guggenheim said. “Instead, I […]
Need data storage? Join the club. It may still seem like the wild west out there, and for many companies, it’s a tough choice between security and accessibility. Luckily, there’s a platform that gives you a lot of both: Polar Backup Cloud Storage. Whether you’re a busy private citizen or managing valuable company data, Polar […]
There are a lot of different language apps out there because nobody learns anything the same exact way – especially not something as complex as a new language. For some people, the best way is to dive in and start talking, but that’s easier said than done if you’re not around those natives you aspire […]
There’s movie merch and then there are artifacts – one-of-a-kind items for the true fans only. These 11 items definitely fall into the latter category. We’ve unearthed movie art, props and other fan touchstones from the major nerd franchises of the last 50 years. Gaze upon these Star Wars and Marvel collectibles and don’t worry. […]