What Are You Looking For?

Sign Up
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-e692a72898
2023-10-14 01:26:08.208280
--------------------------------------------------------------------------------

Name        : libwebp
Product     : Fedora 37
Version     : 1.3.2
Release     : 2.fc37
URL         : https://webmproject.org/
Summary     : Library and tools for the WebP graphics format
Description :
WebP is an image format that does lossy compression of digital
photographic images. WebP consists of a codec based on VP8, and a
container based on RIFF. Webmasters, web developers and browser
developers can use WebP to compress, archive and distribute digital
images more efficiently.

--------------------------------------------------------------------------------
Update Information:

Backport fix for CVE-2023-5129.  ----  Update to 1.3.2.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Sep 28 2023 Sandro Mani  - 1.3.2-2
- Backport upstream fix for CVE-2023-5129
* Mon Sep 18 2023 Sandro Mani  - 1.3.2-1
- Update to 1.3.2
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2239217 - libwebp-1.3.2 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2239217
  [ 2 ] Bug #2241121 - CVE-2023-5129 libwebp: out-of-bounds write with a specially crafted WebP lossless file [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2241121
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-e692a72898' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue

Fedora 37: libwebp 2023-e692a72898

October 14, 2023
Backport fix for CVE-2023-5129

Summary

WebP is an image format that does lossy compression of digital

photographic images. WebP consists of a codec based on VP8, and a

container based on RIFF. Webmasters, web developers and browser

developers can use WebP to compress, archive and distribute digital

images more efficiently.

Update Information:

Backport fix for CVE-2023-5129. ---- Update to 1.3.2.

Change Log

* Thu Sep 28 2023 Sandro Mani - 1.3.2-2 - Backport upstream fix for CVE-2023-5129 * Mon Sep 18 2023 Sandro Mani - 1.3.2-1 - Update to 1.3.2

References

[ 1 ] Bug #2239217 - libwebp-1.3.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2239217 [ 2 ] Bug #2241121 - CVE-2023-5129 libwebp: out-of-bounds write with a specially crafted WebP lossless file [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2241121

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-e692a72898' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
Name : libwebp
Product : Fedora 37
Version : 1.3.2
Release : 2.fc37
URL : https://webmproject.org/
Summary : Library and tools for the WebP graphics format

Related News

Nitrux 3.2.0 Linux Distro Released with Enhanced Security and New Features

Nov 28, 2023

Linux 6.7 Introduces "make hardening.config" To Help Build A Hardened Kernel

Nov 5, 2023

Long-term Support for Linux Kernel to Be Cut as Maintenance Remains Under Strain

Sep 21, 2023

Linux 6.6 Brings New Scheduler, File Sharing and Security

Nov 2, 2023

News

Advisories

HOWTOs

Features

Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024
Cloud Security Basics for Small Businesses
Scanning and Defending Networks with Nmap

About Us

Powered By

Footer Logo