Gisteren kon je hier op Eigenwreld.nl lezen over Hack in Translation exploit die het mogelijk maakte om via ondertiteling je PC over te nemen. Dit was mogelijk op een aantal bekende media player software als VLC en Kodi. De laatst genoemde heeft nu een update uitgebracht om dit en enkele andere kleine dingen te patchen Hoe en wat, is hier onder te lezen.

We're happy to present you this small bugfix release for the v17 "Krypton" range which contains our continuous effort to further improve the v17 range. This release consist of several fixes on top of the v17 and v17.1 release to further improve stability and usablity. Additionally this also inclused a security patch regarding subtitle zip files. We sure would like to thank every one involved with either development, testing or simply helping out others with answering their questions.
Fixes done in this release:

Fix selection after channelgroup switching in PVR guide window
Fix handling of gaps that caused eradic behaviour in EPG grid
Allow backing out of fullscreen pictures by mapping longpress guesture
Quick fix for wake up command not being called in PVR power management
Use alternative method to check if platform updates have been installed on Windows
Set the minimum version in the code which is currently OSX 10.8
Fix possible security flaw which could abused .zip files which try to traverse to a parent directory
Use the correct ttc font from the video file for subtitles on Windows
Detect and delete zero-byte database files which causes crashes

Security

You may have read in the news that malicious subtitle zip files could potentionally infect and harm your media player including Kodi. When Check Point researchers uncovered this flaw they contact us up front to less us know about this flaw. Our developers fixed this secuity gap and have added the fix to this v17.2 release. As such we highly encourage all users to install this latest version! Any previous Kodi version will not get any security patch. We have began the roll out of this version and Android Play Store as well as Windows Store have this update pending and will roll out as soon as possible. Please be patient if you are using these store versions. Our official download page of course has the regular install files available for the supported platforms.