@phobos_dthorga@drake.network @Metaph@scalie.business If you check back now, the issue was a third-party library that wasn't updated. And even if there was a RCE bug in VLC its not gonna magically make you vulnerable by being on your hard drive, you need to download a modified video and play it first, so "only play videos from sources you trust" would be way better security advice
@noiob @Metaph @phobos_dthorga furthermore, vlc has shipped non-vulnerable versions of the library since 3.0.3, released sometime last year, wherever possible.