When can you upgrade the version of libjpeg-turbo

facebook / fresco

An Android library for managing images and the memory they use.

https://frescolib.org/

MIT License

17.07k stars 3.75k forks source link

When can you upgrade the version of libjpeg-turbo #2578

Open baochengchen opened 3 years ago

baochengchen commented 3 years ago

When can you upgrade the version of libjpeg-turbo? Because a project of our company scans a vulnerability in libjpeg turbo when it relies on native-imagetranscoder. libjpeg-turbo v1.5.3 CVE-2018-14498 we found in its new version of libjpeg-turbo has been fixed

wizh commented 3 years ago

Hi! Thanks for letting us know. Pull requests are very welcome :)

jineshmistry1312 commented 2 years ago

@wizh Hi, can you please look at this Pull request? https://github.com/facebook/fresco/pull/2629

Mezzle commented 2 years ago

Duplicates https://github.com/facebook/fresco/issues/2482