Google security advisory (AV23-584)

Serial number: AV23-584
Date: September 26, 2023

On September 25, 2023, Google published a security update to address a vulnerability in the following product:

• libwebp – version 0.5.0 to versions prior to 1.3.2

Google has indicated that CVE-2023-5129 has an available exploit.

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

• CVE - CVE-2023-5129
• BleepingComputer - Google assigns new maximum rated CVE to libwebp bug exploited in attacks