You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Detailed paths
Introduced through: Podfile@0.0.0 › RNFastImage@8.6.3 › SDWebImageWebPCoder@0.8.5 › libwebp@1.2.4
Security information
Factors contributing to the scoring:
Snyk: CVSS 7.5 - High Severity
NVD: Not available. NVD has not yet published its analysis. Why are the scores different? Learn how Snyk evaluates vulnerability scores
Overview
libwebp is a Library to encode and decode images in WebP format.
Affected versions of this package are vulnerable to Double Free which can lead to memory corruption and a potentially exploitable crash.
The text was updated successfully, but these errors were encountered:
I have added the following code to my Podfile which seems to update this dependency for FastImage. Seems like an acceptable workaround for the time being.
Detailed paths
Introduced through: Podfile@0.0.0 › RNFastImage@8.6.3 › SDWebImageWebPCoder@0.8.5 › libwebp@1.2.4
Security information
Factors contributing to the scoring:
Snyk: CVSS 7.5 - High Severity
NVD: Not available. NVD has not yet published its analysis.
Why are the scores different? Learn how Snyk evaluates vulnerability scores
Overview
libwebp is a Library to encode and decode images in WebP format.
Affected versions of this package are vulnerable to Double Free which can lead to memory corruption and a potentially exploitable crash.
The text was updated successfully, but these errors were encountered: