olenko@feddit.nl to Technology@lemmy.worldEnglish · 3年前UPDATE YOUR BROWSERS IMMEDIATELY. RCE VULNERABILITY DISCOVEREDnvd.nist.govexternal-linkmessage-square93fedilinkarrow-up1428file-textcross-posted to: security@lemmy.mltechnology@lemmy.world
arrow-up1428external-linkUPDATE YOUR BROWSERS IMMEDIATELY. RCE VULNERABILITY DISCOVEREDnvd.nist.govolenko@feddit.nl to Technology@lemmy.worldEnglish · 3年前message-square93fedilinkfile-textcross-posted to: security@lemmy.mltechnology@lemmy.world
Any Chromium and Firefox browser prior to version 116 will be vulnerable to this, update your browsers.
minus-squareseaQueue@lemmy.worldlinkfedilinkEnglisharrow-up21·edit-23年前It’s last week’s big libwebp vulnerability again. Edit: this underlying vuln is why last week’s CVE was such a big deal, anything using webp is at risk including a whole big pile of electron apps that everyone uses.
minus-squareGamingChairModel@lemmy.worldlinkfedilinkEnglisharrow-up16·3年前Sorta. OP just linked the full disclosure of the libwebp vulnerability that made the news 2 weeks ago. But there’s an even more recent vulnerability in libvpx that was announced this week, that is similar in a lot of ways (including severity).
AGAIN?
It’s last week’s big libwebp vulnerability again.
Edit: this underlying vuln is why last week’s CVE was such a big deal, anything using webp is at risk including a whole big pile of electron apps that everyone uses.
oh >_>
Sorta. OP just linked the full disclosure of the libwebp vulnerability that made the news 2 weeks ago.
But there’s an even more recent vulnerability in libvpx that was announced this week, that is similar in a lot of ways (including severity).