this post was submitted on 28 Sep 2023
123 points (99.2% liked)

Firefox

17794 readers
28 users here now

A place to discuss the news and latest developments on the open-source browser Firefox

founded 4 years ago
MODERATORS
k_o_t@lemmy.ml
123
Firefox 118.1 released (www.mozilla.org)
submitted 1 year ago by hal_5700X@lemmy.world to c/firefox@lemmy.ml
3 comments fedilink hide all child comments
 

Release Notes

you are viewing a single comment's thread
view the rest of the comments
[–] TwinHaelix@reddthat.com 15 points 1 year ago (1 children)

Fix is to address a critical CVE:

Specific handling of an attacker-controlled VP8 media stream could lead to a heap buffer overflow in the content process. We are aware of this issue being exploited in other products in the wild.

[–] pivot_root@lemmy.world 2 points 1 year ago (1 children)

Any idea if it's the same root cause as CVE-2023-4863 (libwebp heap buffer overflow)? WEBP is a derivative of VP8, after all.

[–] Audacity9961@feddit.ch 4 points 1 year ago

It is apparently a new one in libvpx