Boost For Lemmy @lemmy.world DungFu @lemmy.world 11 mo. ago

Is Boost for Lemmy vulnerable to the webp exploit?

What version of libwebp does Boost use and if it is currently vulnerable, when can we expect an update to fix this issue? The affected versions of libwebp are 0.5.0 to 1.3.1.

17 comments

That's provided through Android itself. Just update your phone and you'll be good.
- Ah ok, I'll just stop using Boost until the October pixel update rolls out then
  
  You should stop using your phone entirely if you're that worried.
  
  The vast majority of apps use the Android Web View component. No point in rolling their own, really.
  
  Surely Android provides security updates?

You've viewed 17 comments.