Fix for CVE-2023–4863 in expo-image@1.3.4
Published in
Sep 29, 2023
expo-image@1.3.4
for SDK 49 has been released with a fix for CVE-2023-4863 — a vulnerability in libwebp
that impacted Chrome and many other applications that used the library for WebP decoding. This vulnerability was fixed in libwebp@1.3.2
, which was released on September 13, 2023.
Learn more in the full article on the Expo Changelog.