WebP Vulnerability: Act Fast to Protect Your Device

Posted: 2023-09-15
By: dwirch
Viewed: 37

Filed Under:

News, Security, Privacy

No attachments for this post

The internet has always had its fair share of threats, but a newly discovered security flaw puts users at an even greater risk. This vulnerability stems from WebP, a popular image codec on the web. By exploiting this "heap buffer overflow" flaw, malicious entities can tamper with user data, effectively injecting malware or even taking over an entire system.

Stack Diary reveals that this glitch not only affects a myriad of apps like Signal, 1Password, Affinity, Gimp, and others but also compromises numerous Android and Flutter-based applications. Yet, the most alarming revelation is its impact on web browsers, including mainstream ones like Chrome, Safari, Firefox, and Brave.

Fortunately, major browsers have responded swiftly with security patches:

• Chrome: 116.0.5846.187 (Mac & Linux), 116.0.5845.187/.188 (Windows)
• Mozilla: Firefox 117.0.1, Firefox ESR 102.15.1, Firefox ESR 115.2.1
• Edge: 116.0.1938.81
• Brave: 1.57.64

If your browser was listed, update it immediately. While some might auto-update, it's wiser to initiate the update manually. For instance, in Chrome, click the three dots on the top-right, navigate to Help > About Google Chrome, and follow the prompt.

Moreover, always be vigilant about app updates. Notably, 1Password has already rolled out a patch, with others soon to follow.

Comments on this post

No comments have been added for this post.

You must be logged in to make a comment.