[BUG] CVE-2023-5217 - update webrtc - Githubissues

session-foundation / session-android

A private messenger for Android.

https://getsession.org

GNU General Public License v3.0

32 stars 4 forks source link

[BUG] CVE-2023-5217 - update webrtc #43

Open licaon-kter opened 6 months ago

licaon-kter commented 6 months ago

Code of conduct

[X] I have read and agree to adhere to the Code of Conduct

Self-training on how to write a bug report

[X] I have learned how to write a bug report

Is there an existing issue for this?

[X] I have searched the existing issues

Current Behavior

ref: https://www.openwall.com/lists/oss-security/2023/09/28/5

ref: https://github.com/oxen-io/session-android/blob/1.18.3/app/build.gradle#L264

eg. https://codeberg.org/iNPUTmice/webrtc-android

Expected Behavior

No response

Steps To Reproduce

No response

Android Version

No response

Session Version

No response

Anything else?

No response

AL-Session commented 5 months ago

All session-android packages & libraries will be updated in the near future, with the work stemming from the following branch: https://github.com/AL-Session/session-android/tree/DevWithUpdatedPackages

Specifically, see: https://github.com/AL-Session/session-android/blob/DevWithUpdatedPackages/gradle/libs.versions.toml

Internal tracking: SES-1867, SES-2147