I and I'm speaking for other members here too....appreciate everything that you do here Condobloke at Linux.org!-
This is important information to know. I'm glad you posted it as it could have a impact on the people I've installed Linux for.
Update:Mozilla also has fixed zero-day flaw inFirefox and Thunderbird, and the Brave browser was updated as well. It appears the common theme here is any software that uses a code library called “libwebp,” and that this vulnerability is being tracked as CVE-2023-4863.
“This includes Electron-based applications, for example – Signal,” writes StackDiary.com. “Electron patched the vulnerability yesterday. Also, software like Honeyview (from Bandisoft) released an update to fix the issue. CVE-2023-4863 was falsely marked as Chrome-only by Mitre and other organizations that track CVE’s and 100% of media reported this issue as “Chrome only”, when it’s not.”