oschaaf commented on issue #1753: libwebp should be updated to >=0.5.2 URL: https://github.com/apache/incubator-pagespeed-mod/issues/1753#issuecomment-368338412 I think CVE-2016-9085 was adressed in https://chromium.googlesource.com/webm/libwebp/+/e2affacc35f1df6cc3b1a9fa0ceff5ce2d0cce83 which fixes an example in libwebp. That does not look like it would be possible to hit the CVE in this project.. the concern here is highly appreciated but it would be better to email [email protected] about things like this..
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] With regards, Apache Git Services
