Описание
Security update for libvpx
This update for libvpx fixes the following issues:
- CVE-2023-5217: Fixed a heap buffer overflow (bsc#1215778).
Список пакетов
Container containers/open-webui:0
libvpx7-1.11.0-150400.3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP4
libvpx-devel-1.11.0-150400.3.3.1
libvpx7-1.11.0-150400.3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP5
libvpx-devel-1.11.0-150400.3.3.1
libvpx7-1.11.0-150400.3.3.1
SUSE Linux Enterprise Module for Package Hub 15 SP4
vpx-tools-1.11.0-150400.3.3.1
SUSE Linux Enterprise Module for Package Hub 15 SP5
vpx-tools-1.11.0-150400.3.3.1
openSUSE Leap 15.4
libvpx-devel-1.11.0-150400.3.3.1
libvpx7-1.11.0-150400.3.3.1
libvpx7-32bit-1.11.0-150400.3.3.1
vpx-tools-1.11.0-150400.3.3.1
openSUSE Leap 15.5
libvpx-devel-1.11.0-150400.3.3.1
libvpx7-1.11.0-150400.3.3.1
libvpx7-32bit-1.11.0-150400.3.3.1
vpx-tools-1.11.0-150400.3.3.1
Ссылки
- Link for SUSE-SU-2023:3946-1
- E-Mail link for SUSE-SU-2023:3946-1
- SUSE Security Ratings
- SUSE Bug 1215778
- SUSE CVE CVE-2023-5217 page
Описание
Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Container containers/open-webui:0:libvpx7-1.11.0-150400.3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP4:libvpx-devel-1.11.0-150400.3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP4:libvpx7-1.11.0-150400.3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP5:libvpx-devel-1.11.0-150400.3.3.1
Ссылки
- CVE-2023-5217
- SUSE Bug 1215776
- SUSE Bug 1215778
- SUSE Bug 1215814
- SUSE Bug 1217559