Softpedia >Windows >Multimedia >Video >Video Players >QuickTime Player for Windows >  Changelog

QuickTime Player for Windows Changelog

What's new in QuickTime Player for Windows 7.7.9.1680.95.84

Jan 7, 2016
  • Impact: Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution
  • Description: Multiple memory corruption issues existed in QuickTime. These issues were addressed through improved memory handling

New in QuickTime Player for Windows 7.7.8.1680.95.71 (Aug 20, 2015)

  • Processing a maliciously crafted file may lead to an unexpected application termination or arbitrary code execution
  • Multiple memory corruption issues existed in QuickTime. These issues were addressed through improved memory handling.

New in QuickTime Player for Windows 7.7.7.1680.95.51 (Jul 1, 2015)

  • Improves security and is recommended for all QuickTime 7 users on Windows.

New in QuickTime Player for Windows 7.7.5.1680.95 (Feb 26, 2014)

  • An uninitialized pointer issue existed in the handling of track lists. This issue was addressed through improved error checking.
  • A buffer overflow existed in the handling of H.264 encoded movie files. This issue was addressed through improved bounds checking.
  • An out of bounds byte swapping issue existed in the handling of QuickTime image descriptions. This issue was addressed through improved bounds checking.
  • A signedness issue existed in the handling of 'stsz' atoms. This issue was addressed through improved bounds checking.
  • A buffer overflow existed in the handling of 'ftab' atoms. This issue was addressed through improved bounds checking.
  • A memory corruption issue existed in the handling of 'dref' atoms. This issue was addressed through improved bounds checking.
  • A buffer overflow existed in the handling of 'ldat' atoms. This issue was addressed through improved bounds checking.
  • A buffer overflow existed in the handling of PSD images. This issue was addressed through improved bounds checking.
  • An out of bounds byte swapping issue existed in the handling of 'ttfo' elements. This issue was addressed through improved bounds checking.
  • A buffer overflow existed in the handling of 'clef' atoms. This issue was addressed through improved bounds checking.

New in QuickTime Player for Windows 7.7.4.1680.86 (May 23, 2013)

  • Opening a maliciously crafted TeXML file may lead to an unexpected application termination or arbitrary code execution. A memory corruption issue existed in the handling of TeXML files. This issue was addressed through improved bounds checking.
  • Playing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in the handling of H.263 encoded movie files. This issue was addressed through improved bounds checking.
  • Playing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in the handling of 'dref' atoms. This issue was addressed through improved bounds checking.
  • Playing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in the handling of H.264 encoded movie files. This issue was addressed through improved bounds checking.
  • Playing a maliciously crafted MP3 file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in the handling of MP3 files. This issue was addressed through improved bounds checking.
  • Playing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in the handling of Sorenson encoded movie files. This issue was addressed through improved bounds checking.
  • Playing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A memory corruption issue existed in the handling of JPEG encoded data. This issue was addressed through improved bounds checking.
  • Viewing a maliciously crafted QTIF file may lead to an unexpected application termination or arbitrary code execution. A memory corruption issue existed in the handling of QTIF files. This issue was addressed through improved bounds checking.
  • Opening a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in the handling of JPEG encoded data. This issue was addressed through improved bounds checking.
  • Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in the handling of 'enof' atoms. This issue was addressed through improved bounds checking.
  • Viewing a maliciously crafted FPX file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in the handling of FPX files. This issue was addressed through improved bounds checking.
  • Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A buffer underflow existed in the handling of 'mvhd' atoms. This issue was addressed through improved bounds checking.

New in QuickTime Player for Windows 7.7.3.1680.64 (Nov 8, 2012)

  • Viewing a maliciously crafted PICT file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in the handling of REGION records in PICT files. This issue was addressed through improved bounds checking.
  • Viewing a maliciously crafted PICT file may lead to an unexpected application termination or arbitrary code execution. A memory corruption issue existed in the handling of PICT files. This issue was addressed through improved bounds checking.
  • Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution. A use after free issue existed in the QuickTime plugin's handling of '_qtactivex_' parameters within a HTML object element. This issue was addressed through improved memory handling.
  • Viewing a maliciously crafted QuickTime TeXML file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in the handling of the transform attribute in text3GTrack elements. This issue was addressed through improved bounds checking.
  • Viewing a maliciously crafted QuickTime TeXML file may lead to an unexpected application termination or arbitrary code execution. Multiple buffer overflows existed in the handling of style elements in QuickTime TeXML files. These issues were addressed through improved bounds checking.
  • Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in the QuickTime plugin's handling of MIME types. This issue was addressed through improved bounds checking.
  • Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution. A use after free issue existed in the QuickTime ActiveX control's handling of the Clear() method. This issue was addressed through improved memory management.
  • Viewing a maliciously crafted Targa file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in the handling of Targa image files. This issue was addressed through improved bounds checking.
  • Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in the handling of 'rnet' boxes in MP4 files. This issue was addressed through improved bounds checking.

New in QuickTime Player for Windows 7.7.2.1680.56 (May 16, 2012)

  • Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution. Multiple stack overflows existed in QuickTime's handling of TeXML files.
  • Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A heap overflow existed in QuickTime's handling of text tracks.
  • Opening a maliciously crafted MP4 encoded file may lead to an unexpected application termination or arbitrary code execution. An uninitialized memory access issue existed in the handling of MP4 encoded files.
  • Viewing a maliciously crafted movie file during progressive download may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in the handling of audio sample tables
  • Viewing a maliciously crafted MPEG file may lead to an unexpected application termination or arbitrary code execution. An integer overflow existed in the handling of MPEG files.
  • Processing a maliciously crafted PNG image may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in the handling of PNG files
  • Viewing a maliciously crafted QTVR movie file may lead to an unexpected application termination or arbitrary code execution. A signedness issue existed in the handling of QTVR movie files.
  • Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A use after free issue existed in the handling of JPEG2000 encoded movie files.
  • Viewing a maliciously crafted .pict file may lead to an unexpected application termination or arbitrary code execution. A memory corruption issue existed in the handling of .pict files.
  • Opening a file in a maliciously crafted path may lead to an unexpected application termination or arbitrary code execution. A stack buffer overflow existed in QuickTime's handling of file paths
  • Viewing a maliciously crafted MPEG file may lead to an unexpected application termination or arbitrary code execution. An integer underflow existed in QuickTime's handling of audio streams in MPEG files.

New in QuickTime Player for Windows 7.7.1.1680.42 (Oct 27, 2011)

  • Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in QuickTime's handling of H.264 encoded movie files.
  • Viewing a maliciously crafted movie file may lead to the disclosure of memory contents. An uninitialized memory access issue existed in QuickTime's handling of URL data handlers within movie files.
  • Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. An implementation issue existed in QuickTime's handling of the atom hierarchy within a movie file
  • An attacker in a privileged network position may inject script in the local domain when viewing template HTML. A cross-site scripting issue existed in QuickTime Player's "Save for Web" export. The template HTML files generated by this feature referenced a script file from a non-encrypted origin. An attacker in a privileged network position may be able to inject malicious scripts in the local domain if the user views a template file locally. This issue is addressed by removing the reference to an online script.
  • Viewing a maliciously crafted FlashPix file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in QuickTime's handling of FlashPix files.
  • Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in QuickTime's handling of FLIC files.
  • Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. Multiple memory corruption issues existed in QuickTime's handling of movie files.
  • Viewing a maliciously crafted PICT file may lead to an unexpected application termination or arbitrary code execution. An integer overflow issue existed in the handling of PICT files.
  • Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A signedness issue existed in the handling of font tables embedded in QuickTime movie files.
  • Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow issue existed in the handling of FLC encoded movie files.
  • Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. An integer overflow issue existed in the handling of JPEG2000 encoded movie files.
  • Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A memory corruption issue existed in the handling of TKHD atoms in QuickTime movie files.

New in QuickTime Player for Windows 7.7.1680.34 (Aug 4, 2011)

  • QuickTime Player provides many exciting features:
  • H.264 video support. Watch movies created with this state-of-the-art, standards-based codec which delivers exceptional-quality video at the lowest data rate possible.
  • Live resize. Playback continues smoothly as you change the size of the QuickTime Player window.
  • Zero-configuration streaming. Now QuickTime automatically determines the best Internet connection speed for your computer and adjusts it as necessary. And if a connection is lost during streaming, QuickTime automatically reconnects to the server.
  • Surround sound. QuickTime Player can now play up to 24 channels of audio. With QuickTime 7, your PC, and surround speakers, you can enjoy the full effect of your surround sound movie or game.
  • Improved playback controls. Use new playback controls to adjust settings for the best viewing experience. Easily change settings including jog shuttle, playback speed, bass, treble, and balance.
  • Floating controls. Easily access functions like pause, play, fast-forward, and rewind while watching full-screen movies.
  • QuickTime 7 Pro:
  • QuickTime 7 Pro users enjoy not only all the great features in QuickTime Player, but also the following new QuickTime Pro capabilities:
  • Create H.264 video. Create incredible-looking video for any use, from 3G (for mobile devices) to HD (high definition) and everything in between.
  • Record audio. Capture audio for easy podcast creation or slideshow narration.
  • Create video for iPhone, iPod and Apple TV. QuickTime Pro allows you to easily convert your existing movie collection into a format that can be played back on iPhone, iPod or Apple TV.
  • Create surround audio. Create a rich multimedia experience by adding multichannel audio to your movie. QuickTime automatically mixes the audio to work with the speaker setup of each user.
  • Concurrent exports. Export multiple files at once and continue with your next playback or editing task.
  • Improved movie authoring. Editing tasks are much easier with new hot keys for in and out points. In addition, Movie Properties has been completely redesigned to facilitate simple and efficient movie authoring.
  • AAC constant-quality mode. In addition to the existing constant bit rate mode, QuickTime 7 Pro allows you to create AAC audio files optimized for constant quality for a consistently high-quality listening experience.
  • 3G streaming. Create 3G files for RTSP streaming that are interoperable with 3G streaming handsets and delivery architectures.
  • Automate with VB Script. Automate your QuickTime workflow with native VB Script support in QuickTime 7. Developers can also use VB Script to access the new QuickTime Active X control for creating custom multimedia applications.

New in QuickTime Player for Windows 7.6.8.1675 (Sep 16, 2010)

  • Impact: Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution
  • Description: An input validation issue exists in the QuickTime ActiveX control. An optional parameter '_Marshaled_pUnk' may be passed to the ActiveX control to specify an arbitrary integer that is later treated as a pointer. Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution. This issue is addressed by ignoring the '_Marshaled_pUnk' parameter.
  • Impact: Viewing an image in a maliciously prepared directory may lead to arbitrary code execution
  • Description: A path searching issue exists in QuickTime Picture Viewer. If an attacker places a maliciously crafted DLL in the same directory as an image file, opening the image file with QuickTime Picture Viewer may lead to arbitrary code execution. This issue is addressed by removing the current working directory from the DLL search path.

New in QuickTime Player for Windows 7.6.7.1675 (Aug 13, 2010)

  • Improves security and is recommended for all QuickTime 7 users on Windows.

New in QuickTime Player for Windows 7.6.6.1671 (Mar 31, 2010)

  • Includes changes that increase reliability, improve compatibility and address security, including general reliability improvements for iMovie

New in QuickTime Player for Windows 7.6.5.1327.80 (Nov 20, 2009)

  • Addresses a compatibility issue that prevented some applications from loading libraries required by QuickTime at startup.
  • Corrects scaling issues with QuickTime movies embedded in webpages using custom scale attributes.

New in QuickTime Player for Windows 7.64.17.73 (Sep 10, 2009)

  • Support for iTunes 9
  • Improved audio device support on Windows Vista

New in QuickTime Player for Windows 7.3 (Nov 5, 2007)

  • Support for iTunes 7.5
  • Updated support for creating iPhone-compatible web content
  • Updated JavaScript support in the QuickTime Web Plug-in
  • Numerous bug fixes
  • This release is recommended for all QuickTime 7 users

New in QuickTime Player for Windows 7.2 (Aug 6, 2007)

  • Support for full screen viewing in QuickTime Player
  • Updates to the H.264 codec
  • Numerous bug fixes