[BUG] webp and CVE-2023-4863 #2922
Labels
bug
Something isn't working
Comments
Bilb
added a commit
to Bilb/session-desktop
that referenced
this issue
Sep 14, 2023
Relates CVE-2023-4863 Relates oxen-io#2922
|
Hey, |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Code of conduct
Self-training on how to write a bug report
Is there an existing issue for this?
Current Behavior
Although I can't personally use any newer versions of Session since I'm on Windows 8.1, isn't every single version of Session now going to be impacted by that webp exploit (CVE-2023-4863) that's been reported and fixed in certain applications over the last few days?
Especially as the webp library is also part of Electron, Signal (which they've fixed), and other things...
Personally I think this needs to be clarified.
Expected Behavior
N/A
Steps To Reproduce
Unknown
Desktop Version
I was using the last version that worked with Windows 8.1 (since Uninstalled)
Anything else?
No response
The text was updated successfully, but these errors were encountered: