Hello, welcome to the Thursday, July 25th, 2019 edition of the Sands and the Storms anders

Stormcast. My name is Johannes Ulrich. And then I'm recording from Jacksonville, Florida.

Some controversy yesterday about a vulnerability in VLC, Surt Bund, the German cert did warn about what it called an unpatched vulnerability

in VLC.

Now, VLC recently released some patches, but it did not include a patch in this update for

Lib EBML, which was the library vulnerable to the problem that was identified

by Sir Bund in its advisory and also published as a CVE by MITR. Well, it turns out that

VLC actually does include a patched version of this library for at least a year.

So this is really an issue that has been taken care of quite a while ago and should not

be a problem in any recently shipped version of VLC.

So in other words, well, it was already patched, so that's why there is no new patch for this

problem.

Now the only scenario that may still expose you to this vulnerability even with an up-to-date

version of VLC is if your Linux distribution did include the out-of-date version of Lip eBML. And in this scenario,

yes, the proof-of-concept videos that were published for this vulnerability will at least cause

VLC to crash. And in teaser has discovered a new version of the watchbog cryptocurrency mining malware.

Now this is a botnet that has been going around for about a year and it uses your standard

Linux vulnerabilities like Jira and the like in order to compromise systems and install its

cryptocurrency miner.

What sort of caught in teaser's attention is that the latest version of this particular

malware is now scanning for the RDP protocol.

And of course, with Blue Keep, everybody is sort of waiting for the Big Bang here to happen.

...