| Ticket UUID: | 34581ebca363ed48c9e3f1bbe68b5a5c06b5bf6e | |||
| Title: | Is Ripcord affected by the libwebp RCE vulnerability? (CVE-2023-5129/CVE-2023-4863) | |||
| Status: | Open | Type: | Bug | |
| Severity: | Critical | Priority: | High | |
| Subsystem: | General | Resolution: | Open | |
| Last Modified: | 2023-09-29 14:56:48 | |||
| Version Found In: | ||||
|
phoenix616 — 2023-09-29 14:56:15 Recently there has been news about a remote code execution attack against libwebp. (CVE-2023-5129/CVE-2023-4863 News) Seeing as Ripcord seems to be able to render WEBP images just fine it would be interesting to know if it's vulnerable and if so when a fix will be deployed? (Because otherwise continuing to use it would be an extreme security risk) | ||||