The vulnerability in the Move IR compiler allows malicious actors to introduce executable code to their smart contracts,” OpenZepplin’s CEO Demian Brener told CoinDesk.
Source: https://www.coindesk.com/vulnerability-fixed-in-facebook-contract-language-for-libra-cryptocurrency