Any Chromium and Firefox browser prior to version 116 will be vulnerable to this, update your browsers.

  • Th3D3k0y@lemmy.world
    link
    fedilink
    English
    arrow-up
    14
    ·
    1 year ago

    Current Description

    Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)

    • cheese_greater@lemmy.world
      link
      fedilink
      English
      arrow-up
      4
      ·
      1 year ago

      By crafter webpage, does it mean it refers to anything like phishing or something a more savvy user wouldn’t likely “fall for” or does that actually not matter (zero-day or whatever)