From 0636c357b3af062b3b3dcf0770eefc55c8051542 Mon Sep 17 00:00:00 2001 From: Kornel Date: Wed, 13 Sep 2023 15:09:35 +0100 Subject: [PATCH] CVE-2023-4863 in vendored libwebp (#1780) --- crates/libwebp-sys/RUSTSEC-0000-0000.md | 18 ++++++++++++++++++ crates/libwebp-sys2/RUSTSEC-0000-0000.md | 18 ++++++++++++++++++ 2 files changed, 36 insertions(+) create mode 100644 crates/libwebp-sys/RUSTSEC-0000-0000.md create mode 100644 crates/libwebp-sys2/RUSTSEC-0000-0000.md diff --git a/crates/libwebp-sys/RUSTSEC-0000-0000.md b/crates/libwebp-sys/RUSTSEC-0000-0000.md new file mode 100644 index 0000000..4854137 --- /dev/null +++ b/crates/libwebp-sys/RUSTSEC-0000-0000.md @@ -0,0 +1,18 @@ +```toml +[advisory] +id = "RUSTSEC-0000-0000" +package = "libwebp-sys" +date = "2023-09-12" +categories = ["memory-corruption"] +keywords = ["webp"] +aliases = ["CVE-2023-4863"] + +[versions] +patched = [">= 0.9.3"] +``` + +# libwebp: OOB write in BuildHuffmanTable + +[Google](https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_11.html) and [Mozilla](https://www.mozilla.org/en-US/security/advisories/mfsa2023-40/) have released security advisories for RCE due to heap overflow in libwebp. Google warns the vulnerability has been exploited in the wild. + +libwebp needs to be updated to include a patch for "OOB write in BuildHuffmanTable". diff --git a/crates/libwebp-sys2/RUSTSEC-0000-0000.md b/crates/libwebp-sys2/RUSTSEC-0000-0000.md new file mode 100644 index 0000000..6c551b3 --- /dev/null +++ b/crates/libwebp-sys2/RUSTSEC-0000-0000.md @@ -0,0 +1,18 @@ +```toml +[advisory] +id = "RUSTSEC-0000-0000" +package = "libwebp-sys2" +date = "2023-09-12" +categories = ["memory-corruption"] +keywords = ["webp"] +aliases = ["CVE-2023-4863"] + +[versions] +patched = [">= 0.1.8"] +``` + +# libwebp: OOB write in BuildHuffmanTable + +[Google](https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_11.html) and [Mozilla](https://www.mozilla.org/en-US/security/advisories/mfsa2023-40/) have released security advisories for RCE due to heap overflow in libwebp. Google warns the vulnerability has been exploited in the wild. + +libwebp needs to be updated to include a patch for "OOB write in BuildHuffmanTable".