It was recently discovered that the mpv player is vulnerable to an remote execution attack, as documented below:

https://github.com/mpv-player/mpv/issues/5456

https://www.suse.com/security/cve/CVE-2018-6360/

Since our desktop app uses libmpv, we immediately dispatched our security experts to investigate. We are happy to report that the conclusion is, Stremio is NOT vulnerable to this attack. Our desktop application uses a stripped-down version of libmpv, which does not include youtube-dl at all; as this is the component that contributes to the existence of this vulnerability, Stremio is 100% safe.

We have said that before, and we’ll never get tired of saying it: safe, secure and pleasant user experience is an utmost priority for us. We will never allow for our system to be compromised, and our security team will continue to work tirelessly to ensure your safety. As usual, we remain open to any security-related questions that you may have.

Categories: SecurityStremio News

Leave a Reply

Your email address will not be published. Required fields are marked *

Related Posts

Stremio News

Shutting Down Ads on Stremio in Anticipation of AdEx Launch

If you are a regular Stremio user, you have noticed that our desktop and mobile apps do sometimes show ads. Our Android users also had the choice between seeing advertisements, or volunteering some of their Read more…

Stremio News

Stremio for iOS v. 2.30.7: What’s New

We have released a new version of the Stremio app for iOS - you can go ahead and upgrade it, if you haven't done so yet. Here is what is new. 

Stremio News

How to use your smartphone as a remote control for Stremio

Recently, we launched an amazing function: using your smartphone as a remote control for your desktop Stremio app. This is a quick tutorial on how to start using it in 5 easy steps.