VLC 3.0.11 update fixes vulnerability
The new version of the popular the media player includes an important security fix.
David FischerVideoLan has released a new version of the popular media player for download. Users are strongly advised to install the new version, as this will fix a dangerous security vulnerability, which allows attackers to execute code with the privileges of the target user. There are no known active exploits so far.
The computer could crash or a potentially malicious program code with the same rights of the user could be executed on the local computer as the security bulletin describes. The new VLC version should be installed immediately, because now that the details of the vulnerability have been made public, targeted attacks are likely to happen.
The VLC 3.0.11 release notes also mention the following minor bug fixes:
- Fixes HLS regressions
- Fixes a potential crash on startup on macOS
- Fixes imprecise seeking in m4a files
- Fixes resampling on Android
- Fixes a crash when listing Blu-ray mountpoints on macOS
- Avoid unnecessary permission warnings on macOS
- Fixes permanent silence on macOS after pausing playback
- Fixes AAC playback regression
About Author
David Fischer
I am a technology writer for UpdateStar, covering software, security, and privacy as well as research and innovation in information security. I worked as an editor for German computer magazines for more than a decade before starting to be a team member at UpdateStar.