[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2023-4863/libwebp
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Sep 15 05:03:57 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
174bd40d by Salvatore Bonaccorso at 2023-09-15T06:03:02+02:00
Track fixed version for CVE-2023-4863/libwebp
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -505,7 +505,7 @@ CVE-2023-4863 (Heap buffer overflow in WebP in Google Chrome prior to 116.0.5845
- firefox 117.0.1-1
- firefox-esr 115.2.1esr-1
- thunderbird 1:115.2.2-1
- - libwebp <unfixed> (bug #1051787)
+ - libwebp 1.2.4-0.3 (bug #1051787)
NOTE: https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_11.html
NOTE: src:chromium builds against the system libwebp library
NOTE: Fixed by: https://chromium.googlesource.com/webm/libwebp.git/+/902bc9190331343b2017211debcec8d2ab87e17a%5E%21/
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/174bd40d95aecff3fffbd892960d23f6e852d2a2
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/174bd40d95aecff3fffbd892960d23f6e852d2a2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230915/a0d73d4c/attachment.htm>
More information about the debian-security-tracker-commits
mailing list