Update to latest libwebp 1.3.2

This fixes the major libwebp vulnerability that was widely reported on last week, e.g. https://arstechnica.com/security/2023/09/incomplete-disclosures-by-apple-and-google-create-huge-blindspot-for-0-day-hunters/

Author: tannerhelland

App/PhotoDemon/Plugins/libsharpyuv.dll

@@ -70,7 +70,7 @@ Private Const EXPECTED_LITTLECMS_VERSION As String = "2.13.1"
 Private Const EXPECTED_LZ4_VERSION As String = "10904"
 Private Const EXPECTED_PSPI_VERSION As String = "0.9"
 Private Const EXPECTED_RESVG_VERSION As String = "0.35.0"
-Private Const EXPECTED_WEBP_VERSION As String = "1.2.4"
+Private Const EXPECTED_WEBP_VERSION As String = "1.3.2"
 Private Const EXPECTED_ZSTD_VERSION As String = "10505"
 
 'To simplify handling throughout this module, plugin existence, allowance, and successful initialization are tracked internally.
@@ -367,6 +367,7 @@ Private Function GetNonEssentialPluginFiles(ByVal pluginEnumID As CORE_PLUGINS,
             dstStringStack.AddString "pspiHost-LICENSE.txt"
 
         Case CCP_libwebp
+            dstStringStack.AddString "libsharpyuv.dll"
             dstStringStack.AddString "libwebpdemux.dll"
             dstStringStack.AddString "libwebp-LICENSE.txt"
             dstStringStack.AddString "libwebpmux.dll"

App/PhotoDemon/Plugins/libwebp.dll

@@ -3,8 +3,8 @@ Attribute VB_Name = "Plugin_WebP"
 'WebP Library Interface
 'Copyright 2021-2023 by Tanner Helland
 'Created: 22/September/21
-'Last updated: 23/September/21
-'Last update: wrap up initial build
+'Last updated: 25/September/23
+'Last update: add code for new libwebp dependency (libsharpyuv)
 '
 'Per its documentation (available at https://github.com/webmproject/libwebp/), libwebp is...
 '
@@ -37,6 +37,10 @@ Option Explicit
 ' "availability" state by setting m_LibAvailable to FALSE
 Private m_hLibWebP As Long, m_hLibWebPDemux As Long, m_hLibWebPMux As Long, m_LibAvailable As Boolean
 
+'As of v1.3.2 (possibly earlier; this was when I updated from 1.2.4), libwebp has an extra dependency on
+' libsharpyuv (bundled with PD).  We must load this *prior* to loading any other webp dlls.
+Private m_hLibSharpYUV As Long
+
 'Forcibly disable libwebp interactions at run-time (if newState is FALSE).
 ' Setting newState to TRUE is not advised; this module will handle state internally based
 ' on successful library loading.
@@ -77,14 +81,19 @@ Public Function InitializeEngine(ByRef pathToDLLFolder As String) As Boolean
 
     'Initialize all webp libraries
     Dim strLibPath As String
+    
+    'New to 1.3.2 is the sharpyuv lib which must be loaded *first*
+    strLibPath = pathToDLLFolder & "libsharpyuv.dll"
+    m_hLibSharpYUV = VBHacks.LoadLib(strLibPath)
+    
+    'libwebp can now resolve dependencies correctly...
     strLibPath = pathToDLLFolder & "libwebp.dll"
     m_hLibWebP = VBHacks.LoadLib(strLibPath)
     strLibPath = pathToDLLFolder & "libwebpdemux.dll"
     m_hLibWebPDemux = VBHacks.LoadLib(strLibPath)
     strLibPath = pathToDLLFolder & "libwebpmux.dll"
     m_hLibWebPMux = VBHacks.LoadLib(strLibPath)
-    
-    m_LibAvailable = (m_hLibWebP <> 0) And (m_hLibWebPDemux <> 0) And (m_hLibWebPMux <> 0)
+    m_LibAvailable = (m_hLibSharpYUV <> 0) And (m_hLibWebP <> 0) And (m_hLibWebPDemux <> 0) And (m_hLibWebPMux <> 0)
     InitializeEngine = m_LibAvailable
 
     If (Not InitializeEngine) Then PDDebug.LogAction "WARNING!  LoadLibraryW failed to load one or more WebP libraries.  Last DLL error: " & Err.LastDllError
@@ -96,18 +105,25 @@ Public Function IsWebPEnabled() As Boolean
 End Function
 
 Public Sub ReleaseEngine()
-    If (m_hLibWebP <> 0) Then
-        VBHacks.FreeLib m_hLibWebP
-        m_hLibWebP = 0
+    
+    'For extra safety, free in reverse order from loading
+    If (m_hLibWebPMux <> 0) Then
+        VBHacks.FreeLib m_hLibWebPMux
+        m_hLibWebPMux = 0
     End If
     If (m_hLibWebPDemux <> 0) Then
         VBHacks.FreeLib m_hLibWebPDemux
         m_hLibWebPDemux = 0
     End If
-    If (m_hLibWebPMux <> 0) Then
-        VBHacks.FreeLib m_hLibWebPMux
-        m_hLibWebPMux = 0
+    If (m_hLibWebP <> 0) Then
+        VBHacks.FreeLib m_hLibWebP
+        m_hLibWebP = 0
     End If
+    If (m_hLibSharpYUV <> 0) Then
+        VBHacks.FreeLib m_hLibSharpYUV
+        m_hLibSharpYUV = 0
+    End If
+    
 End Sub
 
 'Import/Export/Validation functions follow

App/PhotoDemon/Plugins/libwebpdemux.dll

@@ -518,7 +518,7 @@ Description="PhotoDemon Photo Editor"
 CompatibleMode="0"
 MajorVer=9
 MinorVer=1
-RevisionVer=163
+RevisionVer=164
 AutoIncrementVer=1
 ServerSupportFiles=0
 VersionComments="Copyright 2000-2023 Tanner Helland - photodemon.org"