Security Vulnerability found in libwebp library · googlesamples/mlkit · Discussion #738

jackyk-cognitoiq
Sep 28, 2023

I noticed there has been a security vulnerability found in the libwebp library (https://nvd.nist.gov/vuln/detail/CVE-2023-4863#range-9599713). Can someone confirm whether the Google ML Kit library uses it or not?

I can see it listed in the licenses as using v0.2. Is that the correct version the library is using?

I believe there is already a patch for the libwebp library to address this (v1.3.2), if the Google ML Kit library do use libwebp, is there any plans for it to be updated?

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Security Vulnerability found in libwebp library #738

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{editor}}'s edit

{{editor}}'s edit

Uh oh!

jackyk-cognitoiq
Sep 28, 2023

Replies: 0 comments

Select a reply

Uh oh!

Security Vulnerability found in libwebp library #738

Uh oh!

Uh oh!

jackyk-cognitoiq Sep 28, 2023

Replies: 0 comments

jackyk-cognitoiq
Sep 28, 2023