Количество 34
Количество 34
RLSA-2023:5214
Important: libwebp security update
RLSA-2023:5201
Important: thunderbird security update
CVE-2023-5129
This CVE ID has been rejected by its CVE Numbering Authority. Duplicate of CVE-2023-4863.
CVE-2023-5129
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Duplicate of CVE-2023-4863.
CVE-2023-4863
Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)
CVE-2023-4863
Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)
CVE-2023-4863
Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)
CVE-2023-4863
Chromium: CVE-2023-4863 Heap buffer overflow in WebP
CVE-2023-4863
Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.1 ...
ROS-20240404-15
Уязвимость libwebp
GHSA-hhrh-69hc-fgg7
With a specially crafted WebP lossless file, libwebp may write data out of bounds to the heap. The ReadHuffmanCodes() function allocates the HuffmanCode buffer with a size that comes from an array of precomputed sizes: kTableSize. The color_cache_bits value defines which size to use. The kTableSize array only takes into account sizes for 8-bit first-level table lookups but not second-level table lookups. libwebp allows codes that are up to 15-bit (MAX_ALLOWED_CODE_LENGTH). When BuildHuffmanTable() attempts to fill the second-level tables it may write data out-of-bounds. The OOB write to the undersized array happens in ReplicateValue.
openSUSE-SU-2023:0278-1
Security update for seamonkey
openSUSE-SU-2023:0247-1
Security update for chromium
openSUSE-SU-2023:0246-1
Security update for chromium
SUSE-SU-2023:3829-1
Security update for libwebp
SUSE-SU-2023:3794-1
Security update for libwebp
SUSE-SU-2023:3634-1
Security update for libwebp
SUSE-SU-2023:3626-1
Security update for MozillaFirefox
SUSE-SU-2023:3610-1
Security update for MozillaFirefox
SUSE-SU-2023:3609-1
Security update for MozillaFirefox
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | RLSA-2023:5214 Important: libwebp security update | больше 1 года назад | ||
| RLSA-2023:5201 Important: thunderbird security update | больше 1 года назад | ||
 | CVE-2023-5129 This CVE ID has been rejected by its CVE Numbering Authority. Duplicate of CVE-2023-4863. | почти 2 года назад | ||
 | CVE-2023-5129 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Duplicate of CVE-2023-4863. | почти 2 года назад | ||
 | CVE-2023-4863 Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical) | CVSS3: 8.8 | 94% Критический | почти 2 года назад |
| CVE-2023-4863 Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical) | CVSS3: 9.6 | 94% Критический | почти 2 года назад |
| CVE-2023-4863 Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical) | CVSS3: 8.8 | 94% Критический | почти 2 года назад |
 | CVE-2023-4863 Chromium: CVE-2023-4863 Heap buffer overflow in WebP | 94% Критический | почти 2 года назад | |
| CVE-2023-4863 Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.1 ... | CVSS3: 8.8 | 94% Критический | почти 2 года назад |
 | ROS-20240404-15 Уязвимость libwebp | CVSS3: 8.8 | около 1 года назад | |
| GHSA-hhrh-69hc-fgg7 With a specially crafted WebP lossless file, libwebp may write data out of bounds to the heap. The ReadHuffmanCodes() function allocates the HuffmanCode buffer with a size that comes from an array of precomputed sizes: kTableSize. The color_cache_bits value defines which size to use. The kTableSize array only takes into account sizes for 8-bit first-level table lookups but not second-level table lookups. libwebp allows codes that are up to 15-bit (MAX_ALLOWED_CODE_LENGTH). When BuildHuffmanTable() attempts to fill the second-level tables it may write data out-of-bounds. The OOB write to the undersized array happens in ReplicateValue. | CVSS3: 10 | почти 2 года назад | |
 | openSUSE-SU-2023:0278-1 Security update for seamonkey | 94% Критический | больше 1 года назад | |
| openSUSE-SU-2023:0247-1 Security update for chromium | 94% Критический | почти 2 года назад | |
| openSUSE-SU-2023:0246-1 Security update for chromium | 94% Критический | почти 2 года назад | |
| SUSE-SU-2023:3829-1 Security update for libwebp | 94% Критический | больше 1 года назад | |
| SUSE-SU-2023:3794-1 Security update for libwebp | 94% Критический | больше 1 года назад | |
| SUSE-SU-2023:3634-1 Security update for libwebp | 94% Критический | почти 2 года назад | |
| SUSE-SU-2023:3626-1 Security update for MozillaFirefox | 94% Критический | почти 2 года назад | |
| SUSE-SU-2023:3610-1 Security update for MozillaFirefox | 94% Критический | почти 2 года назад | |
| SUSE-SU-2023:3609-1 Security update for MozillaFirefox | 94% Критический | почти 2 года назад |
Уязвимостей на страницу