Kodi updated to 17.3 – minor bug and security fixes
Kodi, that media player software loved by many people, has just received an update to 17.3. The update includes a variety of fixes to bugs and security issues. It’s recommended that all users update their versions to 17.3 ASAP.
The official fix list is as follows:
- Fix selection after channelgroup switching in PVR guide window
- Fix handling of gaps that caused eradic behaviour in EPG grid
- Allow backing out of fullscreen pictures by mapping longpress guesture
- Quick fix for wake up command not being called in PVR power management
- Use alternative method to check if platform updates have been installed on Windows
- Set the minimum version in the code which is currently OSX 10.8
- Fix possible security flaw which could abused .zip files which try to traverse to a parent directory
- Use the correct ttc font from the video file for subtitles on Windows
- Detect and delete zero-byte database files which causes crashes
Full information on the latest update are available here.
Subtitles security issue
You may have read that there is a security issue when using subtitles in Kodi.
The issue in question allows an attacker to insert code into a subtitle file (either a zip or srt file) which they then host on one or more of the sites (opensubtitles.org for example) used by Kodi to add subtitles to a movie or TV Show which is playing. The user loads the infected file using the standard Subtitles Kodi feature and, according to Checkpoint, a remote attacker can then gain complete access to the user’s machine.
You’ll be happy to know that Kodi 17.3 fixes this issue.