Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 39: FEDORA-2023-f8319bd876 Moderate: libwebp Buffer Overflow

fedora
Calendar Grey September 15, 2023
Dist Fedora Esm H88
Fedora 39 release fixes significant flaw in libwebp, bolstering defenses against potential buffer overflow attacks.
Backport fix for CVE-2023-4863.

Summary

WebP is an image format that does lossy compression of digital

photographic images. WebP consists of a codec based on VP8, and a

container based on RIFF. Webmasters, web developers and browser

developers can use WebP to compress, archive and distribute digital

images more efficiently.

Update Information:

Backport fix for CVE-2023-4863.

Topics%20covered

Topics Covered

security advisory buffer overflow software update Fedora security fix moderate severity libwebp

Change Log

* Wed Sep 13 2023 Boudhayan Bhattacharya - 1.3.1-3 - Add patch for CVE-2023-4863 ref rhbz#2238543

References


[ 1 ] Bug #2238543 - CVE-2023-4863: Heap buffer overflow in WebP https://bugzilla.redhat.com/show_bug.cgi?id=2238543

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-f8319bd876' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Name: libwebp
Product: Fedora 39
Version: 1.3.1
Release: 3.fc39
URL: https://www.webmproject.org/
Summary: Library and tools for the WebP graphics format

Topics%20covered

Topics Covered

security advisory buffer overflow software update Fedora security fix moderate severity libwebp

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here