Google has assigned a new CVE identifier for a critical security flaw in the libwebp image library for rendering images in theΒ WebP formatΒ that has come under active exploitation in the wild.
Tracked asΒ CVE-2023-5129, the issue has been given the maximum severity score of 10.0 on the CVSS rating system. It has been described as an issue rooted in theΒ Huffman coding algorithmΒ -
With a specially
Details have emerged about a now-patched vulnerability in Google Chrome and Chromium-based browsers that, if successfully exploited, could have made it possible to siphon files containing confidential data.
"The issue arose from the way the browser interacted withΒ symlinksΒ when processing files and directories," Imperva researcher Ron MasasΒ said. "Specifically, the browser did not properly check