appsec
fuckReddit
•
1y ago
•
100%
The WebP 0day
blog.isosceles.comEarly last week, Google released a new stable update for Chrome. The update included a single security fix that was reported by Apple's Security Engineering and Architecture (SEAR) team. The issue, CVE-2023-4863, was a heap buffer overflow in the WebP image library, and it had a familiar warning attached:
Comments 0