Critical VLC media player security flaw. Remove VLC from my Mac?

macos security vlc

Solution 1:

Assuming you have macOS installed on your Mac and you’re talking about the macOS version of VLC, then you do not need to remove VLC at all.

According to CERT-Bund, the highly respected German security agency that discovered this flaw, only VLC versions written for the Linux, UNIX and Windows platforms are prone to injected malicious code.

This issue was first discovered in version 3.0.6 and it is still present in version 3.0.7.1 (see the latest advisory).

As an aside, your question about quarantining VLC would not have applied as it’s not a virus as such. The only fix is to download and install a version of VLC in which the code has been fixed. The VideoLAN organisation is aware of the issue and is currently working on a patch, so hopefully it won't be too long for Linux, UNIX and Windows users of VLC.

Solution 2:

According to TechRadar, “The issue has been detected in the Windows, Linux and UNIX versions of VLC, however the macOS version appears to be unaffected.” In any case it seems that you should be OK if you don’t play untrusted MKV files, and you’ll certainly be OK if you don’t use it until a patch has been installed.

Related

change all .sh files to executable by terminal
Correct an Apple ID Child account birthday to a teen account?
can "File system check exit code is 8" be repaired?
What is the safest way to leave my MacBook on 24/7 with macOS Mojave?
Sending message from Terminal does not work when the Mac is sleeping
Triple boot on Macbook Air with external SSD
Discounted price and purchase prompt on iOS App Store
How to see certificate for intermediate CA in Keychain?
Is it possible to replicate the Windows 7 'show desktop' behaviour in Mac?
Turn off MacBook Air screen rendering but maintain running applications?
How can I install Fritz 16 on a Mac running macOS Mojave?
How can I adjust the sequential numbering scheme when exporting Photos?