Upgrade dav1d, libde265, libheif, libjxl #26517
Conversation
|
I wonder whether there are new versions of lcms2, brotli and highway? 🤔 |
|
There are newer versions of other libraries too. However I think it is not always necessary to jump to the latest version quickly. Sometimes new versions have new problems. Upgrades to libde265, libheif, libjxl solve discovered vulnerabilities and I use dav1d 1.2.1 for some time too. I am submitting changes I am confident with. |
|
I thought those libraries are participating in the file processing and so are likely to be the cause of vulnerabilities? I don't monitor that though and don't know whether there are vulnerabilities caused by those libraries (which could be considered a part of libjxl as they're submodules in libjxl repo). |
|
I understand. That vulnerability fixed in libjxl 0.8.2 is only related to libjxl itself, it is not related to submodule libraries. |
So that Linux build uses same versions like Windows build.