VideoLANOvěřený účet

Of course, the Safari demo is using dav1d in Wasm! cc @WasmWeekly

As some of you suggested, we are going to try the process to become our own CNA for VLC (and maybe some other multimedia libraries). This should avoid issues like the one we just had. #cve #infosec

Would @MITREcorp behave the same way if we were Microsoft or another big company? But no, we're just a small non-profit, that does not even have the money to pay someone fulltime... End-of-thread.

And to finish, both @usnistgov NVD and @MITREcorp were contacted more than 12 hours, (7pm CET) and we still are waiting for an answer, while @elpaisinenglish is asking us for clarifications...

@BFMTV joined of course, with the ridiculous "60%" of the fix is done, which is what the reporter added in the public bugtracker...

It is still on the @Gizmodo frontpage. If you are working at @Gizmodo, are you not a bit ashamed?

You can bet that noone of them will correct their article, or it will be in a small subtweet somewhere hidden.

and then, of course, @Gizmodo decided to play the clickbaiting of "Uninstall VLC now, or you are all going to die". Of course, @Gizmodo did not contact at all to check their info. And then, we got hundreds of article about VLC insecurity.

So, when @certbund decided to do their "disclosure", all the media jumped in, without checking anything nor contacting us.

And of course, @certbund did not contact us for clarifications.

Then, this time, for whatever reason, @certbund decided to do an advisory https://www.cert-bund.de/advisoryshort/CB-K19-0634 …, without checking either the crash (it's not hard), or the vulnerability, or even contacting us.