[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2023-4863/libwebp

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Sep 15 05:03:57 BST 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
174bd40d by Salvatore Bonaccorso at 2023-09-15T06:03:02+02:00
Track fixed version for CVE-2023-4863/libwebp

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -505,7 +505,7 @@ CVE-2023-4863 (Heap buffer overflow in WebP in Google Chrome prior to 116.0.5845
 	- firefox 117.0.1-1
 	- firefox-esr 115.2.1esr-1
 	- thunderbird 1:115.2.2-1
-	- libwebp <unfixed> (bug #1051787)
+	- libwebp 1.2.4-0.3 (bug #1051787)
 	NOTE: https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_11.html
 	NOTE: src:chromium builds against the system libwebp library
 	NOTE: Fixed by: https://chromium.googlesource.com/webm/libwebp.git/+/902bc9190331343b2017211debcec8d2ab87e17a%5E%21/



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/174bd40d95aecff3fffbd892960d23f6e852d2a2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/174bd40d95aecff3fffbd892960d23f6e852d2a2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230915/a0d73d4c/attachment.htm>


More information about the debian-security-tracker-commits mailing list