CVE-2023-44488 - Vulnerability Details

VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable yes

Technical Impact partial

Vendors	Products
Debian	Debian Linux
Fedoraproject	Fedora
Redhat	Enterprise Linux Rhel Aus Rhel E4s Rhel Eus Rhel Tus
Webmproject	Libvpx

Configuration 1 [-]

cpe:2.3:a:webmproject:libvpx:*:*:*:*:*:*:*:*

Configuration 2 [-]

OR	cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux:9.0:::::::*

Configuration 3 [-]

OR	cpe:2.3:o:debian:debian_linux:10.0:::::::*
	cpe:2.3:o:debian:debian_linux:11.0:::::::*
	cpe:2.3:o:debian:debian_linux:12.0:::::::*

Configuration 4 [-]

cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 7
firefox-0:115.4.0-1.el7_9	cpe:/o:redhat:enterprise_linux:7	RHSA-2023:6162	2023-10-30T00:00:00Z
Red Hat Enterprise Linux 8
libvpx-0:1.7.0-10.el8_8	cpe:/a:redhat:enterprise_linux:8	RHSA-2023:5537	2023-10-09T00:00:00Z
firefox-0:115.4.0-1.el8_8	cpe:/a:redhat:enterprise_linux:8	RHSA-2023:6187	2023-10-30T00:00:00Z
thunderbird-0:115.4.1-1.el8_8	cpe:/a:redhat:enterprise_linux:8	RHSA-2023:6194	2023-10-30T00:00:00Z
Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions
libvpx-0:1.7.0-8.el8_1	cpe:/a:redhat:rhel_e4s:8.1	RHSA-2023:5535	2023-10-09T00:00:00Z
firefox-0:115.4.0-1.el8_1	cpe:/a:redhat:rhel_e4s:8.1	RHSA-2023:6189	2023-10-30T00:00:00Z
thunderbird-0:115.4.1-1.el8_1	cpe:/a:redhat:rhel_e4s:8.1	RHSA-2023:6198	2023-10-30T00:00:00Z
Red Hat Enterprise Linux 8.2 Advanced Update Support
libvpx-0:1.7.0-8.el8_2	cpe:/a:redhat:rhel_aus:8.2	RHSA-2023:5534	2023-10-09T00:00:00Z
firefox-0:115.4.0-1.el8_2	cpe:/a:redhat:rhel_aus:8.2	RHSA-2023:6185	2023-10-30T00:00:00Z
thunderbird-0:115.4.1-1.el8_2	cpe:/a:redhat:rhel_aus:8.2	RHSA-2023:6197	2023-10-30T00:00:00Z
Red Hat Enterprise Linux 8.2 Telecommunications Update Service
libvpx-0:1.7.0-8.el8_2	cpe:/a:redhat:rhel_tus:8.2	RHSA-2023:5534	2023-10-09T00:00:00Z
firefox-0:115.4.0-1.el8_2	cpe:/a:redhat:rhel_tus:8.2	RHSA-2023:6185	2023-10-30T00:00:00Z
thunderbird-0:115.4.1-1.el8_2	cpe:/a:redhat:rhel_tus:8.2	RHSA-2023:6197	2023-10-30T00:00:00Z
Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions
libvpx-0:1.7.0-8.el8_2	cpe:/a:redhat:rhel_e4s:8.2	RHSA-2023:5534	2023-10-09T00:00:00Z
firefox-0:115.4.0-1.el8_2	cpe:/a:redhat:rhel_e4s:8.2	RHSA-2023:6185	2023-10-30T00:00:00Z
thunderbird-0:115.4.1-1.el8_2	cpe:/a:redhat:rhel_e4s:8.2	RHSA-2023:6197	2023-10-30T00:00:00Z
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support
libvpx-0:1.7.0-10.el8_4	cpe:/a:redhat:rhel_aus:8.4	RHSA-2023:5536	2023-10-09T00:00:00Z
firefox-0:115.4.0-1.el8_4	cpe:/a:redhat:rhel_aus:8.4	RHSA-2023:6190	2023-10-30T00:00:00Z
thunderbird-0:115.4.1-1.el8_4	cpe:/a:redhat:rhel_aus:8.4	RHSA-2023:6196	2023-10-30T00:00:00Z
Red Hat Enterprise Linux 8.4 Telecommunications Update Service
libvpx-0:1.7.0-10.el8_4	cpe:/a:redhat:rhel_tus:8.4	RHSA-2023:5536	2023-10-09T00:00:00Z
firefox-0:115.4.0-1.el8_4	cpe:/a:redhat:rhel_tus:8.4	RHSA-2023:6190	2023-10-30T00:00:00Z
thunderbird-0:115.4.1-1.el8_4	cpe:/a:redhat:rhel_tus:8.4	RHSA-2023:6196	2023-10-30T00:00:00Z
Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions
libvpx-0:1.7.0-10.el8_4	cpe:/a:redhat:rhel_e4s:8.4	RHSA-2023:5536	2023-10-09T00:00:00Z
firefox-0:115.4.0-1.el8_4	cpe:/a:redhat:rhel_e4s:8.4	RHSA-2023:6190	2023-10-30T00:00:00Z
thunderbird-0:115.4.1-1.el8_4	cpe:/a:redhat:rhel_e4s:8.4	RHSA-2023:6196	2023-10-30T00:00:00Z
Red Hat Enterprise Linux 8.6 Extended Update Support
libvpx-0:1.7.0-10.el8_6	cpe:/a:redhat:rhel_eus:8.6	RHSA-2023:5538	2023-10-09T00:00:00Z
firefox-0:115.4.0-1.el8_6	cpe:/a:redhat:rhel_eus:8.6	RHSA-2023:6186	2023-10-30T00:00:00Z
thunderbird-0:115.4.1-1.el8_6	cpe:/a:redhat:rhel_eus:8.6	RHSA-2023:6195	2023-10-30T00:00:00Z
Red Hat Enterprise Linux 9
libvpx-0:1.9.0-7.el9_2	cpe:/a:redhat:enterprise_linux:9	RHSA-2023:5539	2023-10-09T00:00:00Z
firefox-0:115.4.0-1.el9_2	cpe:/a:redhat:enterprise_linux:9	RHSA-2023:6188	2023-10-30T00:00:00Z
thunderbird-0:115.4.1-1.el9_2	cpe:/a:redhat:enterprise_linux:9	RHSA-2023:6191	2023-10-30T00:00:00Z
Red Hat Enterprise Linux 9.0 Extended Update Support
libvpx-0:1.9.0-7.el9_0	cpe:/a:redhat:rhel_eus:9.0	RHSA-2023:5540	2023-10-09T00:00:00Z
thunderbird-0:115.4.1-1.el9_0	cpe:/a:redhat:rhel_eus:9.0	RHSA-2023:6192	2023-10-30T00:00:00Z
firefox-0:115.4.0-1.el9_0	cpe:/a:redhat:rhel_eus:9.0	RHSA-2023:6199	2023-10-30T00:00:00Z

References

Link	Providers
http://www.openwall.com/lists/oss-security/2023/09/30/4
https://bugzilla.redhat.com/show_bug.cgi?id=2241806
https://github.com/webmproject/libvpx/commit/263682c9a29395055f3b3afe2d97be1828a6223f
https://github.com/webmproject/libvpx/commit/df9fd9d5b7325060b2b921558a1eb20ca7880937
https://github.com/webmproject/libvpx/compare/v1.13.0...v1.13.1
https://github.com/webmproject/libvpx/releases/tag/v1.13.1
https://lists.debian.org/debian-lts-announce/2023/10/msg00001.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TE7F54W5O5RS4ZMAAC7YK3CZWQXIDSKB/
https://nvd.nist.gov/vuln/detail/CVE-2023-44488
https://security.gentoo.org/glsa/202310-04
https://www.cve.org/CVERecord?id=CVE-2023-44488
https://www.debian.org/security/2023/dsa-5518

History

Mon, 23 Sep 2024 17:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-09-30T00:00:00

Updated: 2024-09-23T16:15:31.069Z

Reserved: 2023-09-30T00:00:00

Link: CVE-2023-44488

Vulnrichment

Updated: 2024-08-02T20:07:33.164Z

NVD

Status : Modified

Published: 2023-09-30T20:15:10.200

Modified: 2024-11-21T08:25:59.403

Link: CVE-2023-44488

Redhat

Severity : Important

Publid Date: 2023-09-30T00:00:00Z

Links: CVE-2023-44488 - Bugzilla

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2023-44488", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2024-09-23T16:15:31.069Z", "dateReserved": "2023-09-30T00:00:00", "datePublished": "2023-09-30T00:00:00"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2023-10-23T03:06:17.316294"}, "descriptions": [{"lang": "en", "value": "VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://github.com/webmproject/libvpx/commit/df9fd9d5b7325060b2b921558a1eb20ca7880937"}, {"url": "https://github.com/webmproject/libvpx/commit/263682c9a29395055f3b3afe2d97be1828a6223f"}, {"url": "https://github.com/webmproject/libvpx/compare/v1.13.0...v1.13.1"}, {"url": "https://github.com/webmproject/libvpx/releases/tag/v1.13.1"}, {"name": "[oss-security] 20230930 Re: CVE-2023-5217: Heap buffer overflow in vp8 encoding in libvpx", "tags": ["mailing-list"], "url": "http://www.openwall.com/lists/oss-security/2023/09/30/4"}, {"name": "[debian-lts-announce] 20231001 [SECURITY] [DLA 3598-1] libvpx security update", "tags": ["mailing-list"], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00001.html"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241806"}, {"name": "GLSA-202310-04", "tags": ["vendor-advisory"], "url": "https://security.gentoo.org/glsa/202310-04"}, {"name": "DSA-5518", "tags": ["vendor-advisory"], "url": "https://www.debian.org/security/2023/dsa-5518"}, {"name": "FEDORA-2023-f696934fbf", "tags": ["vendor-advisory"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TE7F54W5O5RS4ZMAAC7YK3CZWQXIDSKB/"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T20:07:33.164Z"}, "title": "CVE Program Container", "references": [{"url": "https://github.com/webmproject/libvpx/commit/df9fd9d5b7325060b2b921558a1eb20ca7880937", "tags": ["x_transferred"]}, {"url": "https://github.com/webmproject/libvpx/commit/263682c9a29395055f3b3afe2d97be1828a6223f", "tags": ["x_transferred"]}, {"url": "https://github.com/webmproject/libvpx/compare/v1.13.0...v1.13.1", "tags": ["x_transferred"]}, {"url": "https://github.com/webmproject/libvpx/releases/tag/v1.13.1", "tags": ["x_transferred"]}, {"name": "[oss-security] 20230930 Re: CVE-2023-5217: Heap buffer overflow in vp8 encoding in libvpx", "tags": ["mailing-list", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2023/09/30/4"}, {"name": "[debian-lts-announce] 20231001 [SECURITY] [DLA 3598-1] libvpx security update", "tags": ["mailing-list", "x_transferred"], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00001.html"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241806", "tags": ["x_transferred"]}, {"name": "GLSA-202310-04", "tags": ["vendor-advisory", "x_transferred"], "url": "https://security.gentoo.org/glsa/202310-04"}, {"name": "DSA-5518", "tags": ["vendor-advisory", "x_transferred"], "url": "https://www.debian.org/security/2023/dsa-5518"}, {"name": "FEDORA-2023-f696934fbf", "tags": ["vendor-advisory", "x_transferred"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TE7F54W5O5RS4ZMAAC7YK3CZWQXIDSKB/"}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-09-23T16:14:51.375605Z", "id": "CVE-2023-44488", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-23T16:15:31.069Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://github.com/webmproject/libvpx/commit/df9fd9d5b7325060b2b921558a1eb20ca7880937", "tags": ["x_transferred"]}, {"url": "https://github.com/webmproject/libvpx/commit/263682c9a29395055f3b3afe2d97be1828a6223f", "tags": ["x_transferred"]}, {"url": "https://github.com/webmproject/libvpx/compare/v1.13.0...v1.13.1", "tags": ["x_transferred"]}, {"url": "https://github.com/webmproject/libvpx/releases/tag/v1.13.1", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/30/4", "name": "[oss-security] 20230930 Re: CVE-2023-5217: Heap buffer overflow in vp8 encoding in libvpx", "tags": ["mailing-list", "x_transferred"]}, {"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00001.html", "name": "[debian-lts-announce] 20231001 [SECURITY] [DLA 3598-1] libvpx security update", "tags": ["mailing-list", "x_transferred"]}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241806", "tags": ["x_transferred"]}, {"url": "https://security.gentoo.org/glsa/202310-04", "name": "GLSA-202310-04", "tags": ["vendor-advisory", "x_transferred"]}, {"url": "https://www.debian.org/security/2023/dsa-5518", "name": "DSA-5518", "tags": ["vendor-advisory", "x_transferred"]}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TE7F54W5O5RS4ZMAAC7YK3CZWQXIDSKB/", "name": "FEDORA-2023-f696934fbf", "tags": ["vendor-advisory", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T20:07:33.164Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-44488", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-23T16:14:51.375605Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-23T16:15:25.080Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://github.com/webmproject/libvpx/commit/df9fd9d5b7325060b2b921558a1eb20ca7880937"}, {"url": "https://github.com/webmproject/libvpx/commit/263682c9a29395055f3b3afe2d97be1828a6223f"}, {"url": "https://github.com/webmproject/libvpx/compare/v1.13.0...v1.13.1"}, {"url": "https://github.com/webmproject/libvpx/releases/tag/v1.13.1"}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/30/4", "name": "[oss-security] 20230930 Re: CVE-2023-5217: Heap buffer overflow in vp8 encoding in libvpx", "tags": ["mailing-list"]}, {"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00001.html", "name": "[debian-lts-announce] 20231001 [SECURITY] [DLA 3598-1] libvpx security update", "tags": ["mailing-list"]}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241806"}, {"url": "https://security.gentoo.org/glsa/202310-04", "name": "GLSA-202310-04", "tags": ["vendor-advisory"]}, {"url": "https://www.debian.org/security/2023/dsa-5518", "name": "DSA-5518", "tags": ["vendor-advisory"]}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TE7F54W5O5RS4ZMAAC7YK3CZWQXIDSKB/", "name": "FEDORA-2023-f696934fbf", "tags": ["vendor-advisory"]}], "descriptions": [{"lang": "en", "value": "VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2023-10-23T03:06:17.316294"}}}, "cveMetadata": {"cveId": "CVE-2023-44488", "state": "PUBLISHED", "dateUpdated": "2024-09-23T16:15:31.069Z", "dateReserved": "2023-09-30T00:00:00", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2023-09-30T00:00:00", "assignerShortName": "mitre"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:webmproject:libvpx:*:*:*:*:*:*:*:*", "matchCriteriaId": "385F58CC-4AA0-4C41-9394-C9481586689E", "versionEndExcluding": "1.13.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*", "matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*", "matchCriteriaId": "7F6FB57C-2BC7-487C-96DD-132683AEB35D", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73", "vulnerable": true}, {"criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*", "matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED", "vulnerable": true}, {"criteria": "cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*", "matchCriteriaId": "46D69DCC-AE4D-4EA5-861C-D60951444C6C", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*", "matchCriteriaId": "E30D0E6F-4AE8-4284-8716-991DFA48CC5D", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding."}, {"lang": "es", "value": "VP9 en libvpx anterior a 1.13.1 maneja mal las anchuras, lo que provoca un bloqueo relacionado con la codificaci\u00f3n."}], "id": "CVE-2023-44488", "lastModified": "2024-11-21T08:25:59.403", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-09-30T20:15:10.200", "references": [{"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/30/4"}, {"source": "cve@mitre.org", "tags": ["Issue Tracking", "Patch", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241806"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "https://github.com/webmproject/libvpx/commit/263682c9a29395055f3b3afe2d97be1828a6223f"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "https://github.com/webmproject/libvpx/commit/df9fd9d5b7325060b2b921558a1eb20ca7880937"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "https://github.com/webmproject/libvpx/compare/v1.13.0...v1.13.1"}, {"source": "cve@mitre.org", "tags": ["Release Notes"], "url": "https://github.com/webmproject/libvpx/releases/tag/v1.13.1"}, {"source": "cve@mitre.org", "tags": ["Mailing List"], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00001.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TE7F54W5O5RS4ZMAAC7YK3CZWQXIDSKB/"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://security.gentoo.org/glsa/202310-04"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://www.debian.org/security/2023/dsa-5518"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/30/4"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Patch", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241806"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://github.com/webmproject/libvpx/commit/263682c9a29395055f3b3afe2d97be1828a6223f"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://github.com/webmproject/libvpx/commit/df9fd9d5b7325060b2b921558a1eb20ca7880937"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://github.com/webmproject/libvpx/compare/v1.13.0...v1.13.1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "https://github.com/webmproject/libvpx/releases/tag/v1.13.1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List"], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00001.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TE7F54W5O5RS4ZMAAC7YK3CZWQXIDSKB/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://security.gentoo.org/glsa/202310-04"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://www.debian.org/security/2023/dsa-5518"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-755"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2023:6162", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "firefox-0:115.4.0-1.el7_9", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5537", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "libvpx-0:1.7.0-10.el8_8", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6187", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "firefox-0:115.4.0-1.el8_8", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6194", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "thunderbird-0:115.4.1-1.el8_8", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5535", "cpe": "cpe:/a:redhat:rhel_e4s:8.1", "package": "libvpx-0:1.7.0-8.el8_1", "product_name": "Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6189", "cpe": "cpe:/a:redhat:rhel_e4s:8.1", "package": "firefox-0:115.4.0-1.el8_1", "product_name": "Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6198", "cpe": "cpe:/a:redhat:rhel_e4s:8.1", "package": "thunderbird-0:115.4.1-1.el8_1", "product_name": "Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5534", "cpe": "cpe:/a:redhat:rhel_aus:8.2", "package": "libvpx-0:1.7.0-8.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Advanced Update Support", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6185", "cpe": "cpe:/a:redhat:rhel_aus:8.2", "package": "firefox-0:115.4.0-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Advanced Update Support", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6197", "cpe": "cpe:/a:redhat:rhel_aus:8.2", "package": "thunderbird-0:115.4.1-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Advanced Update Support", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5534", "cpe": "cpe:/a:redhat:rhel_tus:8.2", "package": "libvpx-0:1.7.0-8.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Telecommunications Update Service", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6185", "cpe": "cpe:/a:redhat:rhel_tus:8.2", "package": "firefox-0:115.4.0-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Telecommunications Update Service", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6197", "cpe": "cpe:/a:redhat:rhel_tus:8.2", "package": "thunderbird-0:115.4.1-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Telecommunications Update Service", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5534", "cpe": "cpe:/a:redhat:rhel_e4s:8.2", "package": "libvpx-0:1.7.0-8.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6185", "cpe": "cpe:/a:redhat:rhel_e4s:8.2", "package": "firefox-0:115.4.0-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6197", "cpe": "cpe:/a:redhat:rhel_e4s:8.2", "package": "thunderbird-0:115.4.1-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5536", "cpe": "cpe:/a:redhat:rhel_aus:8.4", "package": "libvpx-0:1.7.0-10.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6190", "cpe": "cpe:/a:redhat:rhel_aus:8.4", "package": "firefox-0:115.4.0-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6196", "cpe": "cpe:/a:redhat:rhel_aus:8.4", "package": "thunderbird-0:115.4.1-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5536", "cpe": "cpe:/a:redhat:rhel_tus:8.4", "package": "libvpx-0:1.7.0-10.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Telecommunications Update Service", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6190", "cpe": "cpe:/a:redhat:rhel_tus:8.4", "package": "firefox-0:115.4.0-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Telecommunications Update Service", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6196", "cpe": "cpe:/a:redhat:rhel_tus:8.4", "package": "thunderbird-0:115.4.1-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Telecommunications Update Service", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5536", "cpe": "cpe:/a:redhat:rhel_e4s:8.4", "package": "libvpx-0:1.7.0-10.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6190", "cpe": "cpe:/a:redhat:rhel_e4s:8.4", "package": "firefox-0:115.4.0-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6196", "cpe": "cpe:/a:redhat:rhel_e4s:8.4", "package": "thunderbird-0:115.4.1-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5538", "cpe": "cpe:/a:redhat:rhel_eus:8.6", "package": "libvpx-0:1.7.0-10.el8_6", "product_name": "Red Hat Enterprise Linux 8.6 Extended Update Support", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6186", "cpe": "cpe:/a:redhat:rhel_eus:8.6", "package": "firefox-0:115.4.0-1.el8_6", "product_name": "Red Hat Enterprise Linux 8.6 Extended Update Support", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6195", "cpe": "cpe:/a:redhat:rhel_eus:8.6", "package": "thunderbird-0:115.4.1-1.el8_6", "product_name": "Red Hat Enterprise Linux 8.6 Extended Update Support", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5539", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "libvpx-0:1.9.0-7.el9_2", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6188", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "firefox-0:115.4.0-1.el9_2", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6191", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "thunderbird-0:115.4.1-1.el9_2", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5540", "cpe": "cpe:/a:redhat:rhel_eus:9.0", "package": "libvpx-0:1.9.0-7.el9_0", "product_name": "Red Hat Enterprise Linux 9.0 Extended Update Support", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6192", "cpe": "cpe:/a:redhat:rhel_eus:9.0", "package": "thunderbird-0:115.4.1-1.el9_0", "product_name": "Red Hat Enterprise Linux 9.0 Extended Update Support", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6199", "cpe": "cpe:/a:redhat:rhel_eus:9.0", "package": "firefox-0:115.4.0-1.el9_0", "product_name": "Red Hat Enterprise Linux 9.0 Extended Update Support", "release_date": "2023-10-30T00:00:00Z"}], "bugzilla": {"description": "libvpx: crash related to VP9 encoding in libvpx", "id": "2241806", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241806"}, "csaw": false, "cvss3": {"cvss3_base_score": "7.5", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "status": "verified"}, "cwe": "CWE-755", "details": ["VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding.", "A heap-based buffer overflow flaw was found in libvpx, a library used to process VP9 video codecs data. This issue occurs when processing certain specially formatted video data via a crafted HTML page, allowing an attacker to crash or remotely execute arbitrary code in an application, such as a web browser that is compiled with this library."], "mitigation": {"lang": "en:us", "value": "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}, "name": "CVE-2023-44488", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "libvpx", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "libvpx", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Affected", "package_name": "thunderbird", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Affected", "package_name": "firefox:flatpak/firefox", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Affected", "package_name": "thunderbird:flatpak/thunderbird", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2023-09-30T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2023-44488\nhttps://nvd.nist.gov/vuln/detail/CVE-2023-44488"], "statement": "This security issue has been classified as having an Important security impact. Desktop users are at a high risk of exploitation of this flaw with very minimal interaction. It may compromise the confidentiality, integrity, or availability of resources.\nCustomers using this application, which does server-side video codecs by linking to the libvpx library, are also potentially impacted by this flaw and are advised to update to the fixed versions of the package.", "threat_severity": "Important"}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object