ChoeMinji / godot

MIT License
0 stars 0 forks source link

CVE-2023-1999 (Medium) detected in libwebpv1.1.0 #48

Open mend-bolt-for-github[bot] opened 1 year ago

mend-bolt-for-github[bot] commented 1 year ago

CVE-2023-1999 - Medium Severity Vulnerability

Vulnerable Library - libwebpv1.1.0

Library home page: https://chromium.googlesource.com/webm/libwebp

Found in HEAD commit: 620ad7ae3fef04e165cbc3f2776d3e3bf6cfdc4d

Found in base branch: master

Vulnerable Source Files (3)

/thirdparty/libwebp/src/enc/alpha_enc.c /thirdparty/libwebp/src/enc/alpha_enc.c /thirdparty/libwebp/src/enc/alpha_enc.c

Vulnerability Details

There exists a use after free/double free in libwebp. An attacker can use the ApplyFiltersAndEncode() function and loop through to free best.bw and assign best = trial pointer. The second loop will then return 0 because of an Out of memory error in VP8 encoder, the pointer is still assigned to trial and the AddressSanitizer will attempt a double free. 

Publish Date: 2023-06-20

URL: CVE-2023-1999

CVSS 3 Score Details (5.3)

Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: High - Privileges Required: Low - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: None - Availability Impact: None

For more information on CVSS3 Scores, click here.


Step up your Open Source Security Game with Mend here