CVE 2023-4863
Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)
Related bugs and status
CVE-2023-4863 (Candidate) is related to these bugs:
Bug #1928567: Inconsistent output for "snap refresh"/"snap refresh <specific_snap>"
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1928567 | Inconsistent output for "snap refresh"/"snap refresh <specific_snap>" | snapd | Medium | Triaged | ||
Bug #2035220: cve-2023-4863
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 2035220 | cve-2023-4863 | chromium-browser (Ubuntu) | Critical | Fix Released | ||
| 2035220 | cve-2023-4863 | chromium (Debian) | Unknown | Fix Released | ||
| 2035220 | cve-2023-4863 | libwebp (Ubuntu) | Undecided | Fix Released | ||
| 2035220 | cve-2023-4863 | libwebp (Debian) | Unknown | Fix Released | ||
| 2035220 | cve-2023-4863 | thunderbird (Ubuntu) | Undecided | Fix Released | ||
| 2035220 | cve-2023-4863 | firefox (Ubuntu) | Undecided | Fix Released | ||
| 2035220 | cve-2023-4863 | firefox-esr (Ubuntu) | Undecided | Fix Released | ||
Bug #2035300: CVE-2023-4863: Heap buffer overflow in libwebp
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 2035300 | CVE-2023-4863: Heap buffer overflow in libwebp | firefox (Ubuntu) | Undecided | Fix Released | ||
Bug #2035560: CVE-2023-4863: Update Firefox in Ubuntu20.04
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 2035560 | CVE-2023-4863: Update Firefox in Ubuntu20.04 | firefox (Ubuntu) | Undecided | New | ||
See the 
CVE page on Mitre.org
for more details.
