Описание
Security update for libwebp
This update for libwebp fixes the following issues:
- CVE-2023-4863: Fixed heap buffer overflow (bsc#1215231).
Список пакетов
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production
libwebp6-0.5.0-150000.3.14.1
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production
libwebp6-0.5.0-150000.3.14.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
libwebp-devel-0.5.0-150000.3.14.1
libwebp6-0.5.0-150000.3.14.1
libwebp6-32bit-0.5.0-150000.3.14.1
libwebpdecoder2-0.5.0-150000.3.14.1
libwebpdecoder2-32bit-0.5.0-150000.3.14.1
libwebpdemux2-0.5.0-150000.3.14.1
libwebpdemux2-32bit-0.5.0-150000.3.14.1
libwebpextras0-0.5.0-150000.3.14.1
libwebpextras0-32bit-0.5.0-150000.3.14.1
libwebpmux2-0.5.0-150000.3.14.1
libwebpmux2-32bit-0.5.0-150000.3.14.1
SUSE Linux Enterprise Module for Package Hub 15 SP4
libwebp6-32bit-0.5.0-150000.3.14.1
SUSE Linux Enterprise Module for Package Hub 15 SP5
libwebp6-32bit-0.5.0-150000.3.14.1
SUSE Linux Enterprise Server 15 SP1-LTSS
libwebp-devel-0.5.0-150000.3.14.1
libwebp6-0.5.0-150000.3.14.1
libwebp6-32bit-0.5.0-150000.3.14.1
libwebpdecoder2-0.5.0-150000.3.14.1
libwebpdecoder2-32bit-0.5.0-150000.3.14.1
libwebpdemux2-0.5.0-150000.3.14.1
libwebpdemux2-32bit-0.5.0-150000.3.14.1
libwebpextras0-0.5.0-150000.3.14.1
libwebpextras0-32bit-0.5.0-150000.3.14.1
libwebpmux2-0.5.0-150000.3.14.1
libwebpmux2-32bit-0.5.0-150000.3.14.1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
libwebp-devel-0.5.0-150000.3.14.1
libwebp6-0.5.0-150000.3.14.1
libwebp6-32bit-0.5.0-150000.3.14.1
libwebpdecoder2-0.5.0-150000.3.14.1
libwebpdecoder2-32bit-0.5.0-150000.3.14.1
libwebpdemux2-0.5.0-150000.3.14.1
libwebpdemux2-32bit-0.5.0-150000.3.14.1
libwebpextras0-0.5.0-150000.3.14.1
libwebpextras0-32bit-0.5.0-150000.3.14.1
libwebpmux2-0.5.0-150000.3.14.1
libwebpmux2-32bit-0.5.0-150000.3.14.1
SUSE Linux Enterprise Workstation Extension 15 SP4
libwebp6-0.5.0-150000.3.14.1
SUSE Linux Enterprise Workstation Extension 15 SP5
libwebp6-0.5.0-150000.3.14.1
openSUSE Leap 15.4
libwebp6-0.5.0-150000.3.14.1
libwebp6-32bit-0.5.0-150000.3.14.1
libwebpdecoder2-0.5.0-150000.3.14.1
libwebpdecoder2-32bit-0.5.0-150000.3.14.1
libwebpextras0-0.5.0-150000.3.14.1
libwebpextras0-32bit-0.5.0-150000.3.14.1
libwebpmux2-0.5.0-150000.3.14.1
libwebpmux2-32bit-0.5.0-150000.3.14.1
Ссылки
- Link for SUSE-SU-2023:3829-1
- E-Mail link for SUSE-SU-2023:3829-1
- SUSE Security Ratings
- SUSE Bug 1215231
- SUSE CVE CVE-2023-4863 page
Описание
Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)
Затронутые продукты
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:libwebp6-0.5.0-150000.3.14.1
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production:libwebp6-0.5.0-150000.3.14.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-150000.3.14.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-150000.3.14.1
Ссылки
- CVE-2023-4863
- SUSE Bug 1215231
- SUSE Bug 1217115
- SUSE Bug 1217117