Bug 13555

Summary:	[CVE 21] libwebp 1.2.3 CVEs found
Product:	[ROSA-based products] ROSA Fresh	Reporter:	Yury <y.tumanov>
Component:	System (kernel, glibc, systemd, bash, PAM...)	Assignee:	ROSA Linux Bugs <bugs>
Status:	RESOLVED FIXED	QA Contact:	ROSA Linux Bugs <bugs>
Severity:	normal
Priority:	Normal	CC:	e.kosachev, i.gaptrakhmanov, s.matveev, v.potapov, y.tumanov
Version:	All	Flags:	y.tumanov: secteam_verified+
Target Milestone:	---
Hardware:	All
OS:	Linux
URL:	CVE-2023-1999,
Whiteboard:
Platform:	2021.1	ROSA Vulnerability identifier:
RPM Package:		ISO-related:
Bad POT generating:		Upstream:

Description Yury 2023-08-24 00:21:41 MSK

Please patch CVEs for package libwebp version 1.2.3
  
INFO (CVEs are): libwebp 1.2.3
 cves found
CVE-2023-1999
Desc: There exists a use after free/double free in libwebp. An attacker can use the ApplyFiltersAndEncode() function and loop through to free best.bw and assign best = trial pointer. The second loop will then return 0 because of an Out of memory error in VP8 encoder, the pointer is still assigned to trial and the AddressSanitizer will attempt a double free. 

Link: https://nvd.nist.gov/vuln/detail/CVE-2023-1999
Severity: HIGH

Comment 1 ilfat 2023-10-18 13:50:32 MSK

Уже не актуально. В репозитории версия 1.3.2 в которой CVE уже иправлено.

Comment 2 Vladimir Potapov 2023-10-19 06:04:42 MSK

снимаю с QA

Comment 3 Yury 2023-10-19 17:45:50 MSK

secteam_verified