CVE-2023-5217

Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.8 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
ChromeCNA
---
---
CVEADP
---
---
CISA-ADPADP
8.8 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 89%
VendorProductVersion
webmprojectlibvpx
𝑥
< 1.13.1
microsoftedge
116.0.1938.98
microsoftedge
117.0.2045.47
microsoftedge_chromium
116.0.5845.229
microsoftedge_chromium
117.0.5938.132
mozillafirefox
𝑥
< 115.3.1
mozillafirefox
𝑥
< 118.0.1
mozillathunderbird
𝑥
< 115.3.1
debiandebian_linux
10.0
debiandebian_linux
11.0
debiandebian_linux
12.0
appleipados
17.0 ≤
𝑥
< 17.0.3
appleipados
16.7
appleiphone_os
17.0 ≤
𝑥
< 17.0.3
appleiphone_os
16.7
googlechrome
𝑥
< 117.0.5938.132
redhatenterprise_linux
9.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
chromium
bullseye (security)
120.0.6099.224-1~deb11u1
fixed
bullseye
120.0.6099.224-1~deb11u1
fixed
bookworm
130.0.6723.91-1~deb12u1
fixed
bookworm (security)
131.0.6778.204-1~deb12u1
fixed
trixie
131.0.6778.139-1
fixed
sid
131.0.6778.204-1
fixed
firefox
sid
unimportant
firefox-esr
bullseye
115.14.0esr-1~deb11u1
fixed
bullseye (security)
128.5.0esr-1~deb11u1
fixed
bookworm
unimportant
bookworm (security)
unimportant
trixie
unimportant
sid
unimportant
libvpx
bullseye (security)
1.9.0-1+deb11u3
fixed
bullseye
1.9.0-1+deb11u3
fixed
bookworm
1.12.0-1+deb12u3
fixed
bookworm (security)
1.12.0-1+deb12u3
fixed
sid
1.15.0-1
fixed
trixie
1.15.0-1
fixed
thunderbird
bullseye
1:115.12.0-1~deb11u1
fixed
bullseye (security)
1:128.5.0esr-1~deb11u1
fixed
bookworm
1:115.16.0esr-1~deb12u1
fixed
bookworm (security)
1:128.5.0esr-1~deb12u1
fixed
sid
1:128.5.2esr-1
fixed
trixie
1:128.5.2esr-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
chromium-browser
oracular
not-affected
noble
not-affected
mantic
not-affected
lunar
not-affected
jammy
not-affected
focal
not-affected
bionic
ignored
xenial
ignored
trusty
ignored
firefox
oracular
not-affected
noble
not-affected
mantic
not-affected
lunar
ignored
jammy
not-affected
focal
Fixed 118.0.1+build1-0ubuntu0.20.04.1
released
bionic
ignored
xenial
ignored
trusty
ignored
libvpx
oracular
not-affected
noble
not-affected
mantic
not-affected
lunar
Fixed 1.12.0-1ubuntu1.2
released
jammy
Fixed 1.11.0-2ubuntu2.2
released
focal
Fixed 1.8.2-1ubuntu0.2
released
bionic
Fixed 1.7.0-3ubuntu0.18.04.1+esm1
released
xenial
Fixed 1.5.0-2ubuntu1.1+esm2
released
trusty
ignored
mozjs102
oracular
dne
noble
ignored
mantic
ignored
lunar
ignored
jammy
ignored
focal
dne
bionic
dne
xenial
dne
trusty
dne
mozjs38
oracular
dne
noble
dne
mantic
dne
lunar
dne
jammy
dne
focal
dne
bionic
ignored
xenial
dne
trusty
dne
mozjs52
oracular
dne
noble
dne
mantic
dne
lunar
dne
jammy
dne
focal
ignored
bionic
ignored
xenial
dne
trusty
dne
mozjs68
oracular
dne
noble
dne
mantic
dne
lunar
dne
jammy
dne
focal
ignored
bionic
dne
xenial
dne
trusty
dne
mozjs78
oracular
dne
noble
dne
mantic
dne
lunar
ignored
jammy
ignored
focal
dne
bionic
dne
xenial
dne
trusty
dne
mozjs91
oracular
dne
noble
dne
mantic
dne
lunar
dne
jammy
ignored
focal
dne
bionic
dne
xenial
dne
trusty
dne
thunderbird
oracular
Fixed 1:115.3.1+build1-0ubuntu1
released
noble
Fixed 1:115.3.1+build1-0ubuntu1
released
mantic
Fixed 1:115.3.1+build1-0ubuntu1
released
lunar
Fixed 1:115.3.1+build1-0ubuntu0.23.04.1
released
jammy
Fixed 1:115.3.1+build1-0ubuntu0.22.04.2
released
focal
Fixed 1:115.3.1+build1-0ubuntu0.20.04.1
released
bionic
ignored
xenial
ignored
trusty
ignored
Common Weakness Enumeration
References
http://seclists.org/fulldisclosure/2023/Oct/12
http://seclists.org/fulldisclosure/2023/Oct/16
http://www.openwall.com/lists/oss-security/2023/09/28/5
http://www.openwall.com/lists/oss-security/2023/09/28/6
http://www.openwall.com/lists/oss-security/2023/09/29/1
http://www.openwall.com/lists/oss-security/2023/09/29/11
http://www.openwall.com/lists/oss-security/2023/09/29/12
http://www.openwall.com/lists/oss-security/2023/09/29/14
http://www.openwall.com/lists/oss-security/2023/09/29/2
http://www.openwall.com/lists/oss-security/2023/09/29/7
http://www.openwall.com/lists/oss-security/2023/09/29/9
http://www.openwall.com/lists/oss-security/2023/09/30/1
http://www.openwall.com/lists/oss-security/2023/09/30/2
http://www.openwall.com/lists/oss-security/2023/09/30/3
http://www.openwall.com/lists/oss-security/2023/09/30/4
http://www.openwall.com/lists/oss-security/2023/09/30/5
http://www.openwall.com/lists/oss-security/2023/10/01/1
http://www.openwall.com/lists/oss-security/2023/10/01/2
http://www.openwall.com/lists/oss-security/2023/10/01/5
http://www.openwall.com/lists/oss-security/2023/10/02/6
http://www.openwall.com/lists/oss-security/2023/10/03/11
https://arstechnica.com/security/2023/09/new-0-day-in-chrome-and-firefox-is-likely-to-plague-other-software/
https://bugzilla.redhat.com/show_bug.cgi?id=2241191
https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_27.html
https://crbug.com/1486441
https://github.com/webmproject/libvpx/commit/3fbd1dca6a4d2dad332a2110d646e4ffef36d590
https://github.com/webmproject/libvpx/commit/af6dedd715f4307669366944cca6e0417b290282
https://github.com/webmproject/libvpx/releases/tag/v1.13.1
https://github.com/webmproject/libvpx/tags
https://lists.debian.org/debian-lts-announce/2023/09/msg00038.html
https://lists.debian.org/debian-lts-announce/2023/10/msg00001.html
https://lists.debian.org/debian-lts-announce/2023/10/msg00015.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4MFWDFJSSIFKWKNOCTQCFUNZWAXUCSS4/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/55YVCZNAVY3Y5E4DWPWMX2SPKZ2E5SOV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AY642Z6JZODQJE7Z62CFREVUHEGCXGPD/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BCVSHVX2RFBU3RMCUFSATVQEJUFD4Q63/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWEJYS5NC7KVFYU3OAMPKQDYN6JQGVK6/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TE7F54W5O5RS4ZMAAC7YK3CZWQXIDSKB/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WTRUIS3564P7ZLM2S2IH4Y4KZ327LI4I/
https://pastebin.com/TdkC4pDv
https://security-tracker.debian.org/tracker/CVE-2023-5217
https://security.gentoo.org/glsa/202310-04
https://security.gentoo.org/glsa/202401-34
https://stackdiary.com/google-discloses-a-webm-vp8-bug-tracked-as-cve-2023-5217/
https://support.apple.com/kb/HT213961
https://support.apple.com/kb/HT213972
https://twitter.com/maddiestone/status/1707163313711497266
https://www.debian.org/security/2023/dsa-5508
https://www.debian.org/security/2023/dsa-5509
https://www.debian.org/security/2023/dsa-5510
https://www.mozilla.org/en-US/security/advisories/mfsa2023-44/
https://www.openwall.com/lists/oss-security/2023/09/28/5
http://seclists.org/fulldisclosure/2023/Oct/12
http://seclists.org/fulldisclosure/2023/Oct/16
http://www.openwall.com/lists/oss-security/2023/09/28/5
http://www.openwall.com/lists/oss-security/2023/09/28/6
http://www.openwall.com/lists/oss-security/2023/09/29/1
http://www.openwall.com/lists/oss-security/2023/09/29/11
http://www.openwall.com/lists/oss-security/2023/09/29/12
http://www.openwall.com/lists/oss-security/2023/09/29/14
http://www.openwall.com/lists/oss-security/2023/09/29/2
http://www.openwall.com/lists/oss-security/2023/09/29/7
http://www.openwall.com/lists/oss-security/2023/09/29/9
http://www.openwall.com/lists/oss-security/2023/09/30/1
http://www.openwall.com/lists/oss-security/2023/09/30/2
http://www.openwall.com/lists/oss-security/2023/09/30/3
http://www.openwall.com/lists/oss-security/2023/09/30/4
http://www.openwall.com/lists/oss-security/2023/09/30/5
http://www.openwall.com/lists/oss-security/2023/10/01/1
http://www.openwall.com/lists/oss-security/2023/10/01/2
http://www.openwall.com/lists/oss-security/2023/10/01/5
http://www.openwall.com/lists/oss-security/2023/10/02/6
http://www.openwall.com/lists/oss-security/2023/10/03/11
https://arstechnica.com/security/2023/09/new-0-day-in-chrome-and-firefox-is-likely-to-plague-other-software/
https://bugzilla.redhat.com/show_bug.cgi?id=2241191
https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_27.html
https://crbug.com/1486441
https://github.com/webmproject/libvpx/commit/3fbd1dca6a4d2dad332a2110d646e4ffef36d590
https://github.com/webmproject/libvpx/commit/af6dedd715f4307669366944cca6e0417b290282
https://github.com/webmproject/libvpx/releases/tag/v1.13.1
https://github.com/webmproject/libvpx/tags
https://lists.debian.org/debian-lts-announce/2023/09/msg00038.html
https://lists.debian.org/debian-lts-announce/2023/10/msg00001.html
https://lists.debian.org/debian-lts-announce/2023/10/msg00015.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4MFWDFJSSIFKWKNOCTQCFUNZWAXUCSS4/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/55YVCZNAVY3Y5E4DWPWMX2SPKZ2E5SOV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AY642Z6JZODQJE7Z62CFREVUHEGCXGPD/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BCVSHVX2RFBU3RMCUFSATVQEJUFD4Q63/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWEJYS5NC7KVFYU3OAMPKQDYN6JQGVK6/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TE7F54W5O5RS4ZMAAC7YK3CZWQXIDSKB/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WTRUIS3564P7ZLM2S2IH4Y4KZ327LI4I/
https://pastebin.com/TdkC4pDv
https://security-tracker.debian.org/tracker/CVE-2023-5217
https://security.gentoo.org/glsa/202310-04
https://security.gentoo.org/glsa/202401-34
https://stackdiary.com/google-discloses-a-webm-vp8-bug-tracked-as-cve-2023-5217/
https://support.apple.com/kb/HT213961
https://support.apple.com/kb/HT213972
https://twitter.com/maddiestone/status/1707163313711497266
https://www.debian.org/security/2023/dsa-5508
https://www.debian.org/security/2023/dsa-5509
https://www.debian.org/security/2023/dsa-5510
https://www.mozilla.org/en-US/security/advisories/mfsa2023-44/
https://www.openwall.com/lists/oss-security/2023/09/28/5
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-5217