libwebp: Fix CVE-2023-4863 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Soumya Sambu <soumya.sambu@windriver.com>	2023-11-03 08:54:54 +0000
committer	Steve Sakoman <steve@sakoman.com>	2023-11-11 08:23:01 -1000
commit	a09c4a48332ee1686f3c12a5373e16976ba4916b (patch)
tree	cdcecdda5cf5a0495a771f640447b771ee7cdecf /meta/classes/cve-check.bbclass
parent	c97d2f0f0961a7d524beb7716d24aa249980e604 (diff)
download	poky-a09c4a48332ee1686f3c12a5373e16976ba4916b.tar.gz

libwebp: Fix CVE-2023-4863

Heap buffer overflow in WebP in Google Chrome prior to 116.0.5845.187 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Removed CVE-2023-5129.patch as CVE-2023-5129 is duplicate of CVE-2023-4863. CVE: CVE-2023-4863 References: https://nvd.nist.gov/vuln/detail/CVE-2023-4863 https://security-tracker.debian.org/tracker/CVE-2023-4863 https://bugzilla.redhat.com/show_bug.cgi?id=2238431#c12 (From OE-Core rev: e2bd9494b59b486000320c6814371f37828d4c2d) Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>

Diffstat (limited to 'meta/classes/cve-check.bbclass')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: