VideoLAN has released a security advisory to address multiple vulnerabilities in the VLC Media Player. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition. The flaws occur when the media player attempts to parse malformatted or overly long byte streams. Exploitation of these vulnerabilities requires the user to explicitly open specifically crafted malicious files to exploit the vulnerabilities. Read the full advisory here: VideoLAN.com/videolan.org/advisory-vulnerability-report.
Source: https://threatpost.com/critical-flaws-haunt-vlc-media-player-042610/73874/