TakingOnWater

joined 1 year ago
sorted by: new top controversial old
Does Sync use the libwebp library? in c/syncforlemmy@lemmy.world
[–] TakingOnWater@lemmy.world 4 points 1 year ago

Yeah most of the old reddit browsers for Android seem to have a patch like this. Obviously they're no longer intended for use by the developers, but for anyone using them it would probably be good to know whether they will be forever at risk to a vulnerability like this.

Does Sync use the libwebp library? in c/syncforlemmy@lemmy.world
[–] TakingOnWater@lemmy.world 3 points 1 year ago

Thanks for the explanation! Hopefully that's the case here then with Sync. Still hoping @ljdawson@lemmy.world can confirm one way or another.

35
Does Sync use the libwebp library? (lemmy.world)
 

Looks like a massive vulnerability has been discovered, basically affecting any apps with web browsing functionality. Was interested in seeing how this affects Sync (including the old Sync for Reddit app I guess too, which is still being used out there and won't get any needed security patches).

It sounds like a fix should be in the Android OS security patch for October, but not sure if that protects individual apps at risk still

UPDATE YOUR BROWSERS IMMEDIATELY. RCE VULNERABILITY DISCOVERED in c/technology@lemmy.world
[–] TakingOnWater@lemmy.world 1 points 1 year ago

So if the phone gets a security update for this at the OS level, should we theoretically be safe to use apps with any sort of browser functionality? Like some apps that don't update, or are no longer being maintained, etc