boostforlemmy
Boost For Lemmy Now
Jump
Is Boost for Lemmy vulnerable to the webp exploit?
  • "Initials" by "Florian Körner", licensed under "CC0 1.0". / Remix of the original. - Created with dicebear.comInitialsFlorian Körnerhttps://github.com/dicebear/dicebearDU
    DungFu         Now 100%

    Not really, just temporarily not using apps where random people can post images that are not re-encoded. Turns out this is very few apps, but sadly every lemmy app falls under this category.

    1
    • boostforlemmy
    Boost For Lemmy Now
    Jump
    Is Boost for Lemmy vulnerable to the webp exploit?
  • "Initials" by "Florian Körner", licensed under "CC0 1.0". / Remix of the original. - Created with dicebear.comInitialsFlorian Körnerhttps://github.com/dicebear/dicebearDU
    DungFu         Now 58%

    Ah ok, I'll just stop using Boost until the October pixel update rolls out then

    2
    • boostforlemmy
    Boost For Lemmy DungFu Now 95%
    Is Boost for Lemmy vulnerable to the webp exploit?

    What version of libwebp does Boost use and if it is currently vulnerable, when can we expect an update to fix this issue? The affected versions of libwebp are 0.5.0 to 1.3.1.

    66
    13
    "Initials" by "Florian Körner", licensed under "CC0 1.0". / Remix of the original. - Created with dicebear.comInitialsFlorian Körnerhttps://github.com/dicebear/dicebearDU
    Now
    1 2

    DungFu

    DungFu@ lemmy.world