Preface: What is the difference between WebP and JPEG files? Both file types compress the image, making it easier to share and store. However, WebP files are typically much smaller than traditional JPEGs.

Background: Microsoft Edge (Chromium), it was first released in 2015 as the successor to Internet Explorer and is based on Google’s Chromium.
If the Chromium version of Edge isn’t available through Windows Update, you can install it manually using these steps:
1. Open Microsoft Edge download website.
2. Click the Download button.
3. Double-click the file to launch the wizard and install Microsoft Edge Chromium.

The following two components have a functional relationship required by Microsoft Edge.

WebP codec is a library to encode and decode images in WebP format. This package contains the library that can be used in other programs to add WebP support, as well as the command line tools ‘cwebp’ and ‘dwebp’ to compress and decompress images respectively.

What is WebView Windows 11? A web view control embeds a view into your app that renders web content using the Microsoft Edge Legacy rendering engine. Hyperlinks can also appear and function in a web view control. The WebView2 control is available as part of the Windows UI Library 3 (WinUI3).

Vulnerability details: Heap buffer overflow in WebP in Google Chrome prior to 116.0.5845.187 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)

Such design weakness was caused by a WebP code library (libwebp) heap buffer overflow weakness whose impact ranges from crashes to arbitrary code execution.

Remedy: The Stable and Extended stable channels has been updated to 116.0.5845.187 for Mac and Linux and 116.0.5845.187/.188 for Windows

Official announcement: Please refer to the link for details of Microsoft announcement –

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4863