Vulnerability CVE-2023-1999: Information

Description

There exists a use after free/double free in libwebp. An attacker can use the ApplyFiltersAndEncode() function and loop through to free best.bw and assign best = trial pointer. The second loop will then return 0 because of an Out of memory error in VP8 encoder, the pointer is still assigned to trial and the AddressSanitizer will attempt a double free.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2023-1999

Published: June 20, 2023

Modified: Feb. 13, 2025

Error type identifier: CWE-415, CWE-416

Fixed packages

Package name	Branch	Fixed in version	Version from repository	Errata ID	Task #	State
firefox-esr	sisyphus	102.10.0-alt1	128.8.1-alt1	ALT-PU-2023-1649-1	318816	Fixed
firefox-esr	p10	102.10.0-alt1	128.7.0-alt1	ALT-PU-2023-1797-1	319671	Fixed
firefox-esr	p9	102.11.0-alt0.c9.1	102.11.0-alt0.c9.1	ALT-PU-2023-4365-2	324721	Fixed
firefox-esr	c10f2	102.10.0-alt1	128.6.0-alt0.c10.1	ALT-PU-2023-1797-1	319671	Fixed
firefox-esr	c9f2	102.10.0-alt0.c9.1	102.12.0-alt0.c9.1	ALT-PU-2023-1758-1	319753	Fixed
libwebp	sisyphus	1.3.1-alt1	1.5.0-alt1	ALT-PU-2023-2105-1	323891	Fixed
libwebp	sisyphus_e2k	1.3.1-alt1	1.5.0-alt1	ALT-PU-2023-4080-1	-	Fixed
libwebp	sisyphus_riscv64	1.3.1-alt1	1.5.0-alt1	ALT-PU-2023-4073-1	-	Fixed
libwebp	p10	1.3.2-alt1	1.3.2-alt1	ALT-PU-2023-7312-5	334597	Fixed
libwebp	p10_e2k	1.3.2-alt1	1.3.2-alt1	ALT-PU-2023-8290-1	-	Fixed
libwebp	c10f2	1.3.2-alt1	1.3.2-alt1	ALT-PU-2024-1166-3	338230	Fixed
libwebp	c9f2	1.3.2-alt1	1.3.2-alt1	ALT-PU-2023-5876-3	330397	Fixed
thunderbird	sisyphus	102.10.0-alt1	137.0.2-alt1	ALT-PU-2023-1648-1	318817	Fixed
thunderbird	sisyphus_riscv64	102.10.0-alt0.1.rv64	137.0.2-alt1	ALT-PU-2023-3254-1	-	Fixed
thunderbird	p10	102.10.0-alt1	128.6.0-alt0.p10.1	ALT-PU-2023-1783-1	319782	Fixed
thunderbird	p9	102.11.0-alt0.c9.1	102.11.0-alt0.c9.1	ALT-PU-2023-4366-2	324721	Fixed
thunderbird	c10f2	102.10.0-alt1	128.6.0-alt0.p10.1	ALT-PU-2023-1783-1	319782	Fixed
thunderbird	c9f2	102.10.0-alt0.c9.1	102.11.0-alt0.c9.1	ALT-PU-2023-1765-1	319783	Fixed

References to Advisories, Solutions, and Tools

Hyperlink	Resource
https://chromium.googlesource.com/webm/libwebp	Product
https://chromium.googlesource.com/webm/libwebp	Product
https://security.gentoo.org/glsa/202309-05
https://security.gentoo.org/glsa/202309-05

Affected configurations:
1. Configuration 1
  cpe:2.3:a:webmproject:libwebp:*:*:*:*:*:*:*:*
  Start including
  0.4.2
  End excluding
  1.3.1

Version: v25.3.0

Vulnerability CVE-2023-1999: Information

Description

Fixed packages

References to Advisories, Solutions, and Tools

Configuration 1