Описание
Security update for libwebp
This update for libwebp fixes the following issues:
- CVE-2023-4863: Fixed a heap buffer overflow (bsc#1215231).
Список пакетов
HPE Helion OpenStack 8
libwebpmux1-0.4.3-4.15.1
SUSE Linux Enterprise Server 12 SP5
libwebp5-0.4.3-4.15.1
libwebp5-32bit-0.4.3-4.15.1
libwebpdemux1-0.4.3-4.15.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libwebp5-0.4.3-4.15.1
libwebp5-32bit-0.4.3-4.15.1
libwebpdemux1-0.4.3-4.15.1
SUSE Linux Enterprise Software Development Kit 12 SP5
libwebp-devel-0.4.3-4.15.1
libwebpdecoder1-0.4.3-4.15.1
libwebpmux1-0.4.3-4.15.1
SUSE OpenStack Cloud 8
libwebpmux1-0.4.3-4.15.1
SUSE OpenStack Cloud 9
libwebpmux1-0.4.3-4.15.1
SUSE OpenStack Cloud Crowbar 8
libwebpmux1-0.4.3-4.15.1
SUSE OpenStack Cloud Crowbar 9
libwebpmux1-0.4.3-4.15.1
Ссылки
- Link for SUSE-SU-2023:3794-1
- E-Mail link for SUSE-SU-2023:3794-1
- SUSE Security Ratings
- SUSE Bug 1215231
- SUSE CVE CVE-2023-4863 page
Описание
Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)
Затронутые продукты
HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.15.1
SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.15.1
SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.15.1
SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.15.1
Ссылки
- CVE-2023-4863
- SUSE Bug 1215231
- SUSE Bug 1217115
- SUSE Bug 1217117