exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2023-5129

почти 2 года назад

This CVE ID has been rejected by its CVE Numbering Authority. Duplicate of CVE-2023-4863.

EPSS: Низкий

CVE-2023-5129

больше 1 года назад

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Duplicate of CVE-2023-4863.

EPSS: Низкий

ROS-20240404-15

около 1 года назад

Уязвимость libwebp

CVSS3: 8.8

EPSS: Низкий

GHSA-hhrh-69hc-fgg7

больше 1 года назад

With a specially crafted WebP lossless file, libwebp may write data out of bounds to the heap. The ReadHuffmanCodes() function allocates the HuffmanCode buffer with a size that comes from an array of precomputed sizes: kTableSize. The color_cache_bits value defines which size to use. The kTableSize array only takes into account sizes for 8-bit first-level table lookups but not second-level table lookups. libwebp allows codes that are up to 15-bit (MAX_ALLOWED_CODE_LENGTH). When BuildHuffmanTable() attempts to fill the second-level tables it may write data out-of-bounds. The OOB write to the undersized array happens in ReplicateValue.

CVSS3: 10

EPSS: Низкий

RLSA-2023:5214

больше 1 года назад

Important: libwebp security update

EPSS: Низкий

RLSA-2023:5201

больше 1 года назад

Important: thunderbird security update

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	Опубликовано
CVE-2023-5129 This CVE ID has been rejected by its CVE Numbering Authority. Duplicate of CVE-2023-4863.		почти 2 года назад
CVE-2023-5129 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Duplicate of CVE-2023-4863.		больше 1 года назад
ROS-20240404-15 Уязвимость libwebp	CVSS3: 8.8	около 1 года назад
GHSA-hhrh-69hc-fgg7 With a specially crafted WebP lossless file, libwebp may write data out of bounds to the heap. The ReadHuffmanCodes() function allocates the HuffmanCode buffer with a size that comes from an array of precomputed sizes: kTableSize. The color_cache_bits value defines which size to use. The kTableSize array only takes into account sizes for 8-bit first-level table lookups but not second-level table lookups. libwebp allows codes that are up to 15-bit (MAX_ALLOWED_CODE_LENGTH). When BuildHuffmanTable() attempts to fill the second-level tables it may write data out-of-bounds. The OOB write to the undersized array happens in ReplicateValue.	CVSS3: 10	больше 1 года назад
RLSA-2023:5214 Important: libwebp security update		больше 1 года назад
RLSA-2023:5201 Important: thunderbird security update		больше 1 года назад

Уязвимостей на страницу