Bug 32280 - libwebp new security issue CVE-2023-4863
Summary: libwebp new security issue CVE-2023-4863
Status: ASSIGNED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: 9
Hardware: All Linux
Priority: Normal critical
Target Milestone: ---
Assignee: QA Team
QA Contact: Sec team
URL:
Whiteboard: MGA8TOO MGA9-64-OK
Keywords:
Depends on:
Blocks:
 
Reported: 2023-09-13 12:25 CEST by Nicolas Salguero
Modified: 2023-09-25 16:30 CEST (History)
3 users (show)

See Also:
Source RPM: libwebp-1.3.0-2.mga9.src.rpm
CVE:
Status comment:


Attachments

Nicolas Salguero 2023-09-13 12:25:51 CEST

Whiteboard: (none) => MGA9TOO, MGA8TOO
CC: (none) => nicolas.salguero
Source RPM: (none) => libwebp-1.3.0-2.mga9.src.rpm

Comment 1 Lewis Smith 2023-09-13 19:28:51 CEST
Assigning this globally because there is no one packager in evidence for libwebp.

Assignee: bugsquad => pkg-bugs

Comment 2 Nicolas Salguero 2023-09-14 16:00:16 CEST
Suggested advisory:
========================

The updated packages fix a security vulnerability:

Heap buffer overflow in WebP in Google Chrome prior to 116.0.5845.187 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (CVE-2023-4863)

References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4863
========================

Updated packages in 9/core/updates_testing:
========================
lib(64)sharpyuv0-1.3.0-2.1.mga9
lib(64)webp7-1.3.0-2.1.mga9
lib(64)webpdecoder3-1.3.0-2.1.mga9
lib(64)webpdemux2-1.3.0-2.1.mga9
lib(64)webpmux3-1.3.0-2.1.mga9
lib(64)webp-devel-1.3.0-2.1.mga9
libwebp-tools-1.3.0-2.1.mga9

from SRPM:
libwebp-1.3.0-2.1.mga9.src.rpm

Updated packages in 8/core/updates_testing:
========================
lib(64)webp7-1.1.0-2.2.mga8
lib(64)webpdecoder3-1.1.0-2.2.mga8
lib(64)webpdemux2-1.1.0-2.2.mga8
lib(64)webpmux3-1.1.0-2.2.mga8
lib(64)webp-devel-1.1.0-2.2.mga8
libwebp-tools-1.1.0-2.2.mga8

from SRPM:
libwebp-1.1.0-2.2.mga8.src.rpm

Assignee: pkg-bugs => nicolas.salguero
Version: Cauldron => 9
Status: NEW => ASSIGNED
Whiteboard: MGA9TOO, MGA8TOO => MGA8TOO

Nicolas Salguero 2023-09-19 09:16:53 CEST

Assignee: nicolas.salguero => qa-bugs

Comment 3 Herman Viaene 2023-09-20 17:53:45 CEST
MGA8-64 Xfce on Acer Aspire 5253
No innstallation issues.
Ref bug 31783 for testing
Firefox continues to work OK, looked for other test, and found https://developers.google.com/speed/webp/docs/img2webp
trying with some jpg files.
$ img2webp shelt0001.jpeg shelt0002.jpeg shelt0003.jpeg -o testwebp.webp
Frame #1 dimension mismatched! Got 2104 x 3183. Was expecting 3152 x 2158.
Above documentation does not show any light on this problem
Ommitting the first jpg:
$ img2webp shelt0002.jpeg shelt0003.jpeg -o testwebp.webp
Frame #1 dimension mismatched! Got 3152 x 2131. Was expecting 2104 x 3183.
Beats me !!!!!

CC: (none) => herman.viaene

Nicolas Salguero 2023-09-25 07:22:09 CEST

Severity: normal => critical

Comment 4 Brian Rockwell 2023-09-25 15:27:40 CEST
I tested this in MGA9 as best I could.  

approving this

CC: (none) => brtians1
Whiteboard: MGA8TOO => MGA8TOO MGA9-64-OK

Comment 5 Herman Viaene 2023-09-25 16:30:30 CEST
MGA9-64 Xfce on Acer Aspire 5253
No innstallation issues.
Got exactly te same results as in Comment 3. I don't know what to think of it, specially since I cann't find any restriction on the file sizes while googling.

Note You need to log in before you can comment on or make changes to this bug.