XnView Software

Various discussion boards for XnView and related products
https://newsgroup.xnview.com/

Security problem - old webp Plugin ( CVE-2023-4863 )

https://newsgroup.xnview.com/viewtopic.php?t=46176

Page 1 of 1

Security problem - old webp Plugin ( CVE-2023-4863 )

Posted: Mon Oct 02, 2023 6:33 am
by psyca
If i look in the /XnViewMP/plugins directory i see different webp.dll_s with version 1.3.0.
Since there is an security bug (buffer overflow) in versions before 1.3.2 its recommend to update the dlls.

https://nvd.nist.gov/vuln/detail/CVE-2023-4863

Re: Security problem - old webp Plugin ( CVE-2023-4863 )

Posted: Mon Oct 02, 2023 6:39 am
by xnview
plese check this post

Re: Security problem - old webp Plugin ( CVE-2023-4863 )

Posted: Mon Oct 02, 2023 7:04 am
by psyca
Are there any plans to release XNV-MP 1.5.6 with the updated lib (Hotfix update) soon?

Re: Security problem - old webp Plugin ( CVE-2023-4863 )

Posted: Mon Oct 02, 2023 7:43 am
by xnview
1.6.0 will be available soon
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited