CVE-2019-11932 describes a vulnerability in what product? https://nvd.nist.gov/vuln/detail/CVE-2019-11932 …
-
-
Also, the fix for CVE-2019-11932: https://github.com/koral--/android-gif-drawable/pull/673 … isn't even the latest vul fixed in android-gif-drawable. 1.2.19 fixes another vul that doesn't seem to even have a CVE. How are people supposed to keep track of this, and how is it supposed to trickle down to developers?
Show this thread -
https://github.com/koral--/android-gif-drawable/commit/ad68e4df1cc2aaaa03cb2357c98434cc281248ab#diff-d503ed87ede00e3bfa2181415fdb4e0d … is a vulnerability that is fixed in android-gif-drawable 1.2.19, but I cannot find any CVE entry to reference it.
Show this thread
End of conversation
New conversation -
-
-
Is there a database of Android Apps along with frameworks they are using? How do you correlate it? What sources do you use?
-
I've been downloading Android apps since I started looking for apps with private keys in them. An Android manifest file will contain the list of files contained in an app. I just queried my Android pile for apps that include libpl_droidsonroids_gif.so https://gist.github.com/wdormann/874198c1bd29c7dd2157d9fc1d858263 …
- 3 more replies
New conversation -
-
-
Though I was not aware of the names of other vulnerable apps, I did mention that threat in my article published in October. 28,400 Android app is a dangerous sign. Do you have any plan to list most popular of them anytime soon?pic.twitter.com/cF53N1v5YJ
-
The list is available here: https://gist.github.com/wdormann/874198c1bd29c7dd2157d9fc1d858263 …
- 4 more replies
New conversation -
-
-
Would you assume this is a sloppy write-up of the vulnerability by Facebook or them not really understanding how widespread it could be? Basically is this laziness or arrogance towards anyone (and any app) outside FB?
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Basically, Facebook was aware it wasn't limited to WhatsApp... ?!?! Ok... seems more sicilian than I am... -.-°
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.