Stupid question but is it possible to get a virus from an MKV file that is less than 24 hours old. I was streamed using VLC version 3.0.20 form the repose on Linux.

  • redcalcium@lemmy.institute
    link
    fedilink
    English
    arrow-up
    62
    ·
    7 months ago

    Every once in a while security researchers would discover sophisticated exploits that would allow malwares to take over your computer via multimedia files, but those are actually rarely exploited in the wild by run off the mill malwares.

    Unless you’re an important person being targeted by hackers and three letter agencies, your biggest source of threat is running infected programs from untrusted sources, e.g. cracks downloaded from random torrents or warez sites, shady sites serving ads that trick you to run some executables, etc.

  • RvTV95XBeo@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    66
    arrow-down
    16
    ·
    edit-2
    7 months ago

    Definitely no, viruses need 48-72 hours of incubation before the .mkv host becomes contagious. If the file is <24 hours old, I’d look for another source.

    If you’re worried your computer might be infected, you should consider swapping your case LEDs with UV lights to purify your system.

  • brettvitaz@programming.dev
    link
    fedilink
    English
    arrow-up
    25
    ·
    edit-2
    7 months ago

    someone please correct me if I’m wrong but I believe that for it to be possible, the application that plays the mkv file would have to have a remote execution exploit and the code for the virus would be executed through the player. the player would be required to have elevated privileges. I think this is exceptionally unlikely for vlc

    • ReversalHatchery@beehaw.org
      link
      fedilink
      English
      arrow-up
      15
      arrow-down
      1
      ·
      7 months ago

      The player does not have to be elevated. With an unelevated player the file exploiting such a vuln would be able to execute code with the privileges and access of the player

  • Walking Coffin@lemmy.dbzer0.com
    link
    fedilink
    English
    arrow-up
    19
    ·
    7 months ago

    Like someone else said, it’s unlikely. However it is possible but it would need to exploit your media player (VLC) and/or your OS. As long as your source is trustworthy you shouldn’t have to worry, that’s why the megathread is there.

      • finley@lemm.ee
        link
        fedilink
        English
        arrow-up
        13
        ·
        7 months ago

        As others have said, it’s technically possible, but it would extremely difficult and would require coordinating a lot of different variables which is extremely unlikely. I’m not sure there’s actually ever been an example of this type of attack outside of a lab.

  • XNX@slrpnk.net
    link
    fedilink
    English
    arrow-up
    19
    ·
    7 months ago

    You’re probably fine it’s extremely unlikely. Dont trust emails that say they recorded you wanking its a scam

  • ShortN0te@lemmy.ml
    link
    fedilink
    English
    arrow-up
    15
    ·
    7 months ago

    Absolutely yes. Even if it is not disguised executable.

    It could contain an exploit which targets the video player you are opening it with.

  • Sims@lemmy.ml
    link
    fedilink
    English
    arrow-up
    12
    arrow-down
    1
    ·
    7 months ago

    There’s imho no stupid questions regarding personal cyber-security. There are only things we don’t know yet.

  • 🇰 🌀 🇱 🇦 🇳 🇦 🇰 ℹ️@yiffit.net
    link
    fedilink
    English
    arrow-up
    12
    arrow-down
    2
    ·
    edit-2
    7 months ago

    Afaik, it’s possible for any file to be infected with a virus. Videos themselves can be, and .MKV is a container of other files (video, audio, subtitles). The video source, audio source or even .txt containing the subtitles could be a malicious virus inside the container.

  • Kazumara@discuss.tchncs.de
    link
    fedilink
    English
    arrow-up
    10
    ·
    7 months ago

    In general media files can be formed in a way to trigger some bug in the media player, sometimes in ways that allow to overflow buffers and start ROP chaining.

    About 8 years ago there was this media file going around crashing any iPhones that tried to play it with the integrated player.

    Of course crashing is way easier than code execution. So overall your scenario is unlikely. VLC also does not yet know of any issues with 3.0.20: https://www.videolan.org/security/

      • Sethayy@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        5
        ·
        7 months ago

        Probably never?

        Next you’re gonna be judging cars on their ability to float.

        Open source follows an entirely different risk model (and arguably much more effective than throwing money at greedy companies)

  • Charadon@lemmy.sdf.org
    link
    fedilink
    English
    arrow-up
    10
    arrow-down
    1
    ·
    edit-2
    7 months ago

    In theory, you could make a fake executable with the mkv file extension on a unix system, by making it a shell script with a bunch of garbage data at the end, marking it executable, and distributing it with a tarball. But the chances someone will do that is insanely low.

    Also it has caveats:

    1. It’d rely on your double clicking it, and having your file manager not warning you about it.
    2. Video players wouldn’t run the shell script code, if it’d run the file at all.
  • Artyom@lemm.ee
    link
    fedilink
    English
    arrow-up
    10
    arrow-down
    1
    ·
    7 months ago

    Not really, but you can get a virus from movie.mkv.exe, which will probably show up in windows as “movie.mkv” but will actually run a program.

    That being said, I’ve never actually seen this in the wild and it was mainly talked about in the mp3 era.

  • Julian_1_2_3_4_5@slrpnk.net
    link
    fedilink
    arrow-up
    7
    ·
    7 months ago

    if you really only played it and it didn’t abuse some zero day in vlc (extremely unlikely), the there’s basically zero chance you could have activated a virus.

    • Julian_1_2_3_4_5@slrpnk.net
      link
      fedilink
      arrow-up
      3
      ·
      7 months ago

      But it’s definitely possible to ship a virus embedded in a playable mkv file, but something else would have to extract it first, for it to do anything

  • cmnybo@discuss.tchncs.de
    link
    fedilink
    English
    arrow-up
    6
    ·
    7 months ago

    Just make sure the file doesn’t have a double extension. That can trick people into running a .exe when the file extension is hidden. That’s really only a problem on windows though.