this post was submitted on 26 Sep 2023
17 points (100.0% liked)

General Lemmy.Cafe

210 readers
1 users here now

General site

founded 1 year ago
MODERATORS
[email protected]
17
Pict-rs updated to 0.4.3 (lemmy.cafe)
submitted 1 year ago by [email protected] to c/[email protected]
3 comments fedilink hide all child comments
 

The main feature being a fix the really nasty libwebp vulnerability.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 1 points 1 year ago* (last edited 1 year ago) (1 children)

Where did you find a changelog for pict-rs? I can't find anywhere that lists details on 0.4.3, there don't seem to have been release notes published.

I don't think there's a fix for cve-2023-4863 in here. https://git.asonix.dog/asonix/pict-rs/commits/tag/v0.4.3

[–] [email protected] 1 points 1 year ago* (last edited 1 year ago) (1 children)

https://git.asonix.dog/asonix/pict-rs/releases/tag/v0.4.3

I think the fix was in libwebp, which got pulled with the rebuild of the image.

[–] [email protected] 1 points 1 year ago

Thanks!