VideoLan released VLC 3.0.11 that fixes code execution vulnerability with VLC media player 3.0.10 and earlier versions. The vulnerability can be tracked as CVE-2020-13428, a remote attacker can trigger a buffer overflow in VLC’s H26X packetizer by using a specifically crafted file.
Read full article on GBHackers