Asklemmy

43893 readers

1067 users here now

A loosely moderated place to ask open-ended questions

Search asklemmy 🔍

If your post meets the following criteria, it's welcome here!

Open-ended question
Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions. Assume best intent and be excellent to each other.
Not regarding using or support for Lemmy: context, see the list of support communities and tools for finding communities below
Not ad nauseam inducing: please make sure it is a question that would be new to most members
An actual topic of discussion

Looking for support?

Looking for a community?

Lemmyverse: community search
sub.rehab: maps old subreddits to fediverse options, marks official as such
!lemmy411@lemmy.ca: a community for finding communities

~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~

founded 5 years ago

MODERATORS

what is the webp vulnerability? (lemmy.ml)

submitted 1 year ago by jackpot@lemmy.ml to c/asklemmy@lemmy.ml

18 comments fedilink hide all child comments

i downloaded a webp image a few days ago is my pc compromised, very confused apologies

you are viewing a single comment's thread
view the rest of the comments

[–] Brkdncr@artemis.camp 9 points 1 year ago (1 children)

Anything that decodes webp images is vulnerable to an attack. Unless the vendor of the app says they patched it, assume they have not.

Browsers are obvious, but lots of other things decodes images. Your text messaging app, atm machines, vehicle infotainment, the ticket swipe at the airport. Anything designed to capture, process, or display anything is suspect, along with the underlying os of anything.

[–] mp3@lemmy.ca 2 points 1 year ago

So many apps that we use nowadays are based on Electron, which is a web browser by itself. Those using Discord, Spotify, etc will want to update their app ASAP.