Описание
Security update for libwebp
This update for libwebp fixes the following issues:
- CVE-2023-1999: Fixed a double free (bsc#1210212).
Список пакетов
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production
libwebp6-0.5.0-150000.3.11.1
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production
libwebp6-0.5.0-150000.3.11.1
SUSE Linux Enterprise Module for Package Hub 15 SP4
libwebp6-32bit-0.5.0-150000.3.11.1
SUSE Linux Enterprise Module for Package Hub 15 SP5
libwebp6-32bit-0.5.0-150000.3.11.1
SUSE Linux Enterprise Workstation Extension 15 SP4
libwebp6-0.5.0-150000.3.11.1
SUSE Linux Enterprise Workstation Extension 15 SP5
libwebp6-0.5.0-150000.3.11.1
openSUSE Leap 15.4
libwebp6-0.5.0-150000.3.11.1
libwebp6-32bit-0.5.0-150000.3.11.1
libwebpdecoder2-0.5.0-150000.3.11.1
libwebpdecoder2-32bit-0.5.0-150000.3.11.1
libwebpextras0-0.5.0-150000.3.11.1
libwebpextras0-32bit-0.5.0-150000.3.11.1
libwebpmux2-0.5.0-150000.3.11.1
libwebpmux2-32bit-0.5.0-150000.3.11.1
Ссылки
- Link for SUSE-SU-2023:2490-1
- E-Mail link for SUSE-SU-2023:2490-1
- SUSE Security Ratings
- SUSE Bug 1210212
- SUSE CVE CVE-2023-1999 page
Описание
There exists a use after free/double free in libwebp. An attacker can use the ApplyFiltersAndEncode() function and loop through to free best.bw and assign best = trial pointer. The second loop will then return 0 because of an Out of memory error in VP8 encoder, the pointer is still assigned to trial and the AddressSanitizer will attempt a double free.
Затронутые продукты
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:libwebp6-0.5.0-150000.3.11.1
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production:libwebp6-0.5.0-150000.3.11.1
SUSE Linux Enterprise Module for Package Hub 15 SP4:libwebp6-32bit-0.5.0-150000.3.11.1
SUSE Linux Enterprise Module for Package Hub 15 SP5:libwebp6-32bit-0.5.0-150000.3.11.1
Ссылки
- CVE-2023-1999
- SUSE Bug 1213054
- SUSE Bug 1217159