Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2023-4863

Опубликовано: 12 сент. 2023
Источник: ubuntu
Приоритет: medium
EPSS Критический
CVSS3: 8.8

Описание

Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

not-affected

code not present
esm-apps/noble

not-affected

code not present
esm-infra/focal

DNE

focal was not-affected [code not present]
focal

not-affected

code not present
jammy

not-affected

code not present
lunar

not-affected

code not present
mantic

not-affected

code not present
noble

not-affected

code not present
trusty

ignored

end of standard support

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

not-affected

code not present
esm-infra/focal

DNE

focal

released

117.0.1+build2-0ubuntu0.20.04.1
jammy

not-affected

code not present
lunar

not-affected

code not present
mantic

not-affected

code not present
noble

not-affected

code not present
trusty

ignored

end of standard support
upstream

released

117.0.1

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

released

1.2.4-0.2ubuntu1
esm-infra-legacy/trusty

not-affected

code not present
esm-infra/bionic

released

0.6.1-2ubuntu0.18.04.2+esm1
esm-infra/focal

not-affected

0.6.1-2ubuntu0.20.04.3
esm-infra/xenial

not-affected

code not present
focal

released

0.6.1-2ubuntu0.20.04.3
jammy

released

1.2.2-2ubuntu0.22.04.2
lunar

released

1.2.4-0.1ubuntu0.23.04.2
mantic

released

1.2.4-0.2ubuntu1

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

released

1:115.2.3+build1-0ubuntu1
esm-infra/focal

DNE

focal

released

1:102.15.1+build1-0ubuntu0.20.04.1
jammy

released

1:102.15.1+build1-0ubuntu0.22.04.1
lunar

released

1:102.15.1+build1-0ubuntu0.23.04.1
mantic

released

1:115.2.3+build1-0ubuntu1
noble

released

1:115.2.3+build1-0ubuntu1
trusty

ignored

end of standard support
upstream

released

115.2.2

Показывать по

Ссылки на источники

EPSS

Процентиль: 100%
0.93991
Критический

8.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2023-4863

CVSS3: 9.6
redhat
почти 2 года назад

Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)

nvd логотип

CVE-2023-4863

CVSS3: 8.8
nvd
почти 2 года назад

Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)

msrc логотип

CVE-2023-4863

msrc
почти 2 года назад

Chromium: CVE-2023-4863 Heap buffer overflow in WebP

debian логотип

CVE-2023-4863

CVSS3: 8.8
debian
почти 2 года назад

Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.1 ...

suse-cvrf логотип

openSUSE-SU-2023:0278-1

suse-cvrf
больше 1 года назад

Security update for seamonkey

EPSS

Процентиль: 100%
0.93991
Критический

8.8 High

CVSS3

Уязвимость CVE-2023-4863