Lucene search
RedHatRHSA-2023:5197HistorySep 18, 2023 - 12:54 p.m.
(RHSA-2023:5197) Important: firefox security update
2023-09-1812:54:43
access.redhat.com
10
mozilla firefox
web browser
security update
libwebp codec
heap buffer overflow
cve-2023-4863
unix
0.609 Medium
EPSS
Percentile
97.8%
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.
This update upgrades Firefox to version 102.15.1 ESR.
Security Fix(es):
- libwebp: Heap buffer overflow in WebP Codec (CVE-2023-4863)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 7 | i686 | firefox-debuginfo | < 102.15.1-1.el7_9 | firefox-debuginfo-102.15.1-1.el7_9.i686.rpm |
| RedHat | 7 | ppc64 | firefox | < 102.15.1-1.el7_9 | firefox-102.15.1-1.el7_9.ppc64.rpm |
| RedHat | 7 | ppc64le | firefox | < 102.15.1-1.el7_9 | firefox-102.15.1-1.el7_9.ppc64le.rpm |
| RedHat | 7 | s390x | firefox-debuginfo | < 102.15.1-1.el7_9 | firefox-debuginfo-102.15.1-1.el7_9.s390x.rpm |
| RedHat | 7 | s390x | firefox | < 102.15.1-1.el7_9 | firefox-102.15.1-1.el7_9.s390x.rpm |
| RedHat | 7 | ppc64le | firefox-debuginfo | < 102.15.1-1.el7_9 | firefox-debuginfo-102.15.1-1.el7_9.ppc64le.rpm |
| RedHat | 7 | ppc64 | firefox-debuginfo | < 102.15.1-1.el7_9 | firefox-debuginfo-102.15.1-1.el7_9.ppc64.rpm |
| RedHat | 7 | x86_64 | firefox-debuginfo | < 102.15.1-1.el7_9 | firefox-debuginfo-102.15.1-1.el7_9.x86_64.rpm |
| RedHat | 7 | i686 | firefox | < 102.15.1-1.el7_9 | firefox-102.15.1-1.el7_9.i686.rpm |
| RedHat | 7 | x86_64 | firefox | < 102.15.1-1.el7_9 | firefox-102.15.1-1.el7_9.x86_64.rpm |
Related
osv
osv
CVE-2023-4863
2023-09-12 15:15:24
Important: libwebp security update
2023-10-06 22:58:06
libwebp: OOB write in BuildHuffmanTable
2023-09-12 12:00:00
nessus
nessus
RHEL 8 : libwebp (RHSA-2023:5309)
2023-09-20 00:00:00
RHEL 9 : thunderbird (RHSA-2023:5223)
2023-09-19 00:00:00
RHEL 8 : thunderbird (RHSA-2023:5202)
2023-09-18 00:00:00
redhat
redhat
(RHSA-2023:5188) Important: thunderbird security update
2023-09-18 12:53:08
(RHSA-2023:5189) Important: libwebp security update
2023-09-18 12:53:09
(RHSA-2023:5192) Important: firefox security update
2023-09-18 12:53:16
ubuntucve
ubuntucve
CVE-2023-5129
2023-09-25 00:00:00
kaspersky
kaspersky
KLA60726 DoS vulnerability in Mozilla Firefox ESR
2023-09-12 00:00:00
KLA60725 DoS vulnerability in Mozilla Thunderbird
2023-09-12 00:00:00
KLA60727 DoS vulnerability in Mozilla Firefox
2023-09-12 00:00:00
nvd
nvd
CVE-2023-5129
2023-09-25 21:15:16
CVE-2023-4863
2023-09-12 15:15:24
mozilla
mozilla
attackerkb
attackerkb
CVE-2023-5129
2023-09-25 00:00:00
CVE-2023-4863
2023-09-12 00:00:00
alpinelinux
alpinelinux
CVE-2023-5129
2023-09-25 21:15:16
CVE-2023-4863
2023-09-12 15:15:24
redhatcve
redhatcve
CVE-2023-5129
2023-09-27 17:55:08
cnvd
cnvd
Google libwebp open source library remote code execution vulnerability
2023-09-27 00:00:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2023-40) - Linux
2023-09-13 00:00:00
Fedora: Security Advisory for libwebp (FEDORA-2023-2a0668fe43)
2023-10-01 00:00:00
Fedora: Security Advisory for libwebp (FEDORA-2023-e692a72898)
2023-10-16 00:00:00
github
github
Bundled libwebp in imagecodecs vulnerable
2023-10-05 00:07:46
Bundled libwebp in Pillow vulnerable
2023-10-05 00:06:58
libwebp: OOB write in BuildHuffmanTable
2023-09-12 15:30:20
rocky
rocky
thunderbird security update
2023-10-06 22:57:16
libwebp security update
2023-10-06 22:58:06
prion
prion
Open redirect
2023-09-25 21:15:00
Heap overflow
2023-09-12 15:15:00
f5
f5
K000137054 : libwebp vulnerabilities CVE-2023-4863 and CVE-2023-5129
2023-09-29 00:00:00
cve
cve
CVE-2023-5129
2023-09-25 21:15:16
CVE-2023-4863
2023-09-12 15:15:24
photon
photon
Critical Photon OS Security Update - PHSA-2023-3.0-0657
2023-09-28 00:00:00
talosblog
talosblog
The security pitfalls of social media sites offering ID-based authentication
2023-09-28 18:00:11
cvelist
cvelist
CVE-2023-5129
2023-09-25 20:42:25
CVE-2023-4863
2023-09-12 14:24:59
debiancve
debiancve
CVE-2023-5129
2023-09-25 21:15:00
CVE-2023-4863
2023-09-12 15:15:24
fedora
fedora
[SECURITY] Fedora 37 Update: firefox-118.0.1-7.fc37
2023-10-10 01:33:42
[SECURITY] Fedora 38 Update: firefox-118.0.1-4.fc38
2023-10-06 01:31:45
[SECURITY] Fedora 39 Update: libwebp-1.3.2-2.fc39
2023-10-03 00:20:56
redos
redos
ROS-20240404-15
2024-04-04 00:00:00
hivepro
hivepro
Google Addresses Fourth Zero-Day Flaw Exploited by Attackers Wildly
2023-09-12 13:05:09
almalinux
almalinux
Important: thunderbird security update
2023-09-19 00:00:00
ibm
ibm
amazon
amazon
Important: qt5-qtimageformats
2023-11-09 19:19:00
debian
debian
[SECURITY] [DSA 5497-1] libwebp security update
2023-09-13 21:07:56
[SECURITY] [DLA 3569-1] thunderbird security update
2023-09-17 09:42:33
cloudfoundry
cloudfoundry
USN-6369-1: libwebp vulnerability | Cloud Foundry
2023-10-12 00:00:00
wolfi
wolfi
CVE-2023-4863 vulnerabilities
2024-07-01 15:27:45
paloalto
paloalto
Impact of libwebp Vulnerability CVE-2023-4863
2023-10-02 23:40:00
mageia
mageia
Updated libwebp packages fix a security vulnerability
2023-10-03 13:53:29
cgr
cgr
CVE-2023-4863 vulnerabilities
2024-05-19 03:07:16
oraclelinux
oraclelinux
thunderbird security update
2023-09-19 00:00:00
firefox security update
2023-09-19 00:00:00
libwebp security update
2023-09-20 00:00:00
hp
hp
slackware
slackware
[slackware-security] mozilla-thunderbird
2023-09-14 02:32:34
freebsd
freebsd
graphics/webp heap buffer overflow
2023-09-12 00:00:00