VLC Media Player 1.1.10 fixes vulnerabilities
The VideoLAN project has announced the release of version 1.1.10 of its VLC media player, the free open source cross-platform multimedia player which supports a variety of audio and video formats. According to the developers, the eleventh release of the 1.1.x branch of VLC is a maintenance and security update that addresses several issues found in the previous update from mid-April.
VLC 1.1.10 fixes several previously reported vulnerabilities in libmodplug, also known as the ModPlug XMMS Plugin, and addresses an integer overflow in the XSPF playlist demultiplexer. Other changes include the removal of FontCache building in the Freetype module, a rewrite of PulseAudio output on Linux/BSD, and various codec and translation updates. A number of Mac OS X interface and hotkey fixes have also been implemented.
Looking ahead, the developers have detailed some of the new features coming in version 1.2.0 of VLC, the project's next major update. VLC 1.2.0 will be "faster and have better display quality" thanks to the Video Output rework which includes rewrites of most of the existing Video Outputs, the addition of new Video Outputs for Direct2D, iOS and Android, new filters for branding videos, sharper rendering of subtitles and support for STL (EBU) subtitles. More information about the upcoming release be found in a blog post by VideoLAN chairman Jean-Baptiste Kempf.
Further details about the maintenance and security update can be found in the official release announcement and on the What's new in 1.1.10 web page. At the time of writing, the project's Security information web page has yet to be updated.
VLC 1.1.10 is available to download for Windows, Mac OS X and Linux from the project's home page. VLC is released under version 2 of the GNU General Public License.