Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Metrics
Affected Vendors & Products
References
History
Fri, 20 Dec 2024 19:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:* cpe:2.3:a:mozilla:firefox_focus:*:*:*:*:*:android:*:* |
cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:* cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:* cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:* |
Vendors & Products |
Mozilla firefox Esr
Mozilla firefox Focus |
Wed, 14 Aug 2024 01:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
MITRE
Status: PUBLISHED
Assigner: Chrome
Published: 2023-09-28T15:23:18.340Z
Updated: 2024-08-02T07:52:08.351Z
Reserved: 2023-09-27T01:52:05.679Z
Link: CVE-2023-5217
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-09-28T16:15:10.980
Modified: 2024-12-20T19:01:23.347
Link: CVE-2023-5217
Redhat