{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2023-44488", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2024-08-02T20:07:33.164Z", "dateReserved": "2023-09-30T00:00:00", "datePublished": "2023-09-30T00:00:00"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2023-10-23T03:06:17.316294"}, "descriptions": [{"lang": "en", "value": "VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://github.com/webmproject/libvpx/commit/df9fd9d5b7325060b2b921558a1eb20ca7880937"}, {"url": "https://github.com/webmproject/libvpx/commit/263682c9a29395055f3b3afe2d97be1828a6223f"}, {"url": "https://github.com/webmproject/libvpx/compare/v1.13.0...v1.13.1"}, {"url": "https://github.com/webmproject/libvpx/releases/tag/v1.13.1"}, {"name": "[oss-security] 20230930 Re: CVE-2023-5217: Heap buffer overflow in vp8 encoding in libvpx", "tags": ["mailing-list"], "url": "http://www.openwall.com/lists/oss-security/2023/09/30/4"}, {"name": "[debian-lts-announce] 20231001 [SECURITY] [DLA 3598-1] libvpx security update", "tags": ["mailing-list"], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00001.html"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241806"}, {"name": "GLSA-202310-04", "tags": ["vendor-advisory"], "url": "https://security.gentoo.org/glsa/202310-04"}, {"name": "DSA-5518", "tags": ["vendor-advisory"], "url": "https://www.debian.org/security/2023/dsa-5518"}, {"name": "FEDORA-2023-f696934fbf", "tags": ["vendor-advisory"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TE7F54W5O5RS4ZMAAC7YK3CZWQXIDSKB/"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T20:07:33.164Z"}, "title": "CVE Program Container", "references": [{"url": "https://github.com/webmproject/libvpx/commit/df9fd9d5b7325060b2b921558a1eb20ca7880937", "tags": ["x_transferred"]}, {"url": "https://github.com/webmproject/libvpx/commit/263682c9a29395055f3b3afe2d97be1828a6223f", "tags": ["x_transferred"]}, {"url": "https://github.com/webmproject/libvpx/compare/v1.13.0...v1.13.1", "tags": ["x_transferred"]}, {"url": "https://github.com/webmproject/libvpx/releases/tag/v1.13.1", "tags": ["x_transferred"]}, {"name": "[oss-security] 20230930 Re: CVE-2023-5217: Heap buffer overflow in vp8 encoding in libvpx", "tags": ["mailing-list", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2023/09/30/4"}, {"name": "[debian-lts-announce] 20231001 [SECURITY] [DLA 3598-1] libvpx security update", "tags": ["mailing-list", "x_transferred"], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00001.html"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241806", "tags": ["x_transferred"]}, {"name": "GLSA-202310-04", "tags": ["vendor-advisory", "x_transferred"], "url": "https://security.gentoo.org/glsa/202310-04"}, {"name": "DSA-5518", "tags": ["vendor-advisory", "x_transferred"], "url": "https://www.debian.org/security/2023/dsa-5518"}, {"name": "FEDORA-2023-f696934fbf", "tags": ["vendor-advisory", "x_transferred"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TE7F54W5O5RS4ZMAAC7YK3CZWQXIDSKB/"}]}]}}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:webmproject:libvpx:*:*:*:*:*:*:*:*", "matchCriteriaId": "385F58CC-4AA0-4C41-9394-C9481586689E", "versionEndExcluding": "1.13.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*", "matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*", "matchCriteriaId": "7F6FB57C-2BC7-487C-96DD-132683AEB35D", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73", "vulnerable": true}, {"criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*", "matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED", "vulnerable": true}, {"criteria": "cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*", "matchCriteriaId": "46D69DCC-AE4D-4EA5-861C-D60951444C6C", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*", "matchCriteriaId": "E30D0E6F-4AE8-4284-8716-991DFA48CC5D", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding."}, {"lang": "es", "value": "VP9 en libvpx anterior a 1.13.1 maneja mal las anchuras, lo que provoca un bloqueo relacionado con la codificaci\u00f3n."}], "id": "CVE-2023-44488", "lastModified": "2023-11-16T01:37:32.350", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-09-30T20:15:10.200", "references": [{"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/30/4"}, {"source": "cve@mitre.org", "tags": ["Issue Tracking", "Patch", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241806"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "https://github.com/webmproject/libvpx/commit/263682c9a29395055f3b3afe2d97be1828a6223f"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "https://github.com/webmproject/libvpx/commit/df9fd9d5b7325060b2b921558a1eb20ca7880937"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "https://github.com/webmproject/libvpx/compare/v1.13.0...v1.13.1"}, {"source": "cve@mitre.org", "tags": ["Release Notes"], "url": "https://github.com/webmproject/libvpx/releases/tag/v1.13.1"}, {"source": "cve@mitre.org", "tags": ["Mailing List"], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00001.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TE7F54W5O5RS4ZMAAC7YK3CZWQXIDSKB/"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://security.gentoo.org/glsa/202310-04"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://www.debian.org/security/2023/dsa-5518"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-755"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2023:6162", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "firefox-0:115.4.0-1.el7_9", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5537", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "libvpx-0:1.7.0-10.el8_8", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6187", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "firefox-0:115.4.0-1.el8_8", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6194", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "thunderbird-0:115.4.1-1.el8_8", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5535", "cpe": "cpe:/a:redhat:rhel_e4s:8.1", "package": "libvpx-0:1.7.0-8.el8_1", "product_name": "Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6189", "cpe": "cpe:/a:redhat:rhel_e4s:8.1", "package": "firefox-0:115.4.0-1.el8_1", "product_name": "Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6198", "cpe": "cpe:/a:redhat:rhel_e4s:8.1", "package": "thunderbird-0:115.4.1-1.el8_1", "product_name": "Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5534", "cpe": "cpe:/a:redhat:rhel_aus:8.2", "package": "libvpx-0:1.7.0-8.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Advanced Update Support", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6185", "cpe": "cpe:/a:redhat:rhel_aus:8.2", "package": "firefox-0:115.4.0-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Advanced Update Support", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6197", "cpe": "cpe:/a:redhat:rhel_aus:8.2", "package": "thunderbird-0:115.4.1-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Advanced Update Support", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5534", "cpe": "cpe:/a:redhat:rhel_tus:8.2", "package": "libvpx-0:1.7.0-8.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Telecommunications Update Service", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6185", "cpe": "cpe:/a:redhat:rhel_tus:8.2", "package": "firefox-0:115.4.0-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Telecommunications Update Service", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6197", "cpe": "cpe:/a:redhat:rhel_tus:8.2", "package": "thunderbird-0:115.4.1-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Telecommunications Update Service", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5534", "cpe": "cpe:/a:redhat:rhel_e4s:8.2", "package": "libvpx-0:1.7.0-8.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6185", "cpe": "cpe:/a:redhat:rhel_e4s:8.2", "package": "firefox-0:115.4.0-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6197", "cpe": "cpe:/a:redhat:rhel_e4s:8.2", "package": "thunderbird-0:115.4.1-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5536", "cpe": "cpe:/a:redhat:rhel_aus:8.4", "package": "libvpx-0:1.7.0-10.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6190", "cpe": "cpe:/a:redhat:rhel_aus:8.4", "package": "firefox-0:115.4.0-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6196", "cpe": "cpe:/a:redhat:rhel_aus:8.4", "package": "thunderbird-0:115.4.1-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5536", "cpe": "cpe:/a:redhat:rhel_tus:8.4", "package": "libvpx-0:1.7.0-10.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Telecommunications Update Service", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6190", "cpe": "cpe:/a:redhat:rhel_tus:8.4", "package": "firefox-0:115.4.0-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Telecommunications Update Service", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6196", "cpe": "cpe:/a:redhat:rhel_tus:8.4", "package": "thunderbird-0:115.4.1-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Telecommunications Update Service", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5536", "cpe": "cpe:/a:redhat:rhel_e4s:8.4", "package": "libvpx-0:1.7.0-10.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6190", "cpe": "cpe:/a:redhat:rhel_e4s:8.4", "package": "firefox-0:115.4.0-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6196", "cpe": "cpe:/a:redhat:rhel_e4s:8.4", "package": "thunderbird-0:115.4.1-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5538", "cpe": "cpe:/a:redhat:rhel_eus:8.6", "package": "libvpx-0:1.7.0-10.el8_6", "product_name": "Red Hat Enterprise Linux 8.6 Extended Update Support", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6186", "cpe": "cpe:/a:redhat:rhel_eus:8.6", "package": "firefox-0:115.4.0-1.el8_6", "product_name": "Red Hat Enterprise Linux 8.6 Extended Update Support", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6195", "cpe": "cpe:/a:redhat:rhel_eus:8.6", "package": "thunderbird-0:115.4.1-1.el8_6", "product_name": "Red Hat Enterprise Linux 8.6 Extended Update Support", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5539", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "libvpx-0:1.9.0-7.el9_2", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6188", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "firefox-0:115.4.0-1.el9_2", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6191", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "thunderbird-0:115.4.1-1.el9_2", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:5540", "cpe": "cpe:/a:redhat:rhel_eus:9.0", "package": "libvpx-0:1.9.0-7.el9_0", "product_name": "Red Hat Enterprise Linux 9.0 Extended Update Support", "release_date": "2023-10-09T00:00:00Z"}, {"advisory": "RHSA-2023:6192", "cpe": "cpe:/a:redhat:rhel_eus:9.0", "package": "thunderbird-0:115.4.1-1.el9_0", "product_name": "Red Hat Enterprise Linux 9.0 Extended Update Support", "release_date": "2023-10-30T00:00:00Z"}, {"advisory": "RHSA-2023:6199", "cpe": "cpe:/a:redhat:rhel_eus:9.0", "package": "firefox-0:115.4.0-1.el9_0", "product_name": "Red Hat Enterprise Linux 9.0 Extended Update Support", "release_date": "2023-10-30T00:00:00Z"}], "bugzilla": {"description": "libvpx: crash related to VP9 encoding in libvpx", "id": "2241806", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241806"}, "csaw": false, "cvss3": {"cvss3_base_score": "7.5", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "status": "verified"}, "cwe": "CWE-755", "details": ["VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding.", "A heap-based buffer overflow flaw was found in libvpx, a library used to process VP9 video codecs data. This issue occurs when processing certain specially formatted video data via a crafted HTML page, allowing an attacker to crash or remotely execute arbitrary code in an application, such as a web browser that is compiled with this library."], "mitigation": {"lang": "en:us", "value": "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}, "name": "CVE-2023-44488", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "libvpx", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "libvpx", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Affected", "package_name": "thunderbird", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Affected", "package_name": "firefox:flatpak/firefox", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Affected", "package_name": "thunderbird:flatpak/thunderbird", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2023-09-30T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2023-44488\nhttps://nvd.nist.gov/vuln/detail/CVE-2023-44488"], "statement": "This security issue has been classified as having an Important security impact. Desktop users are at a high risk of exploitation of this flaw with very minimal interaction. It may compromise the confidentiality, integrity, or availability of resources.\nCustomers using this application, which does server-side video codecs by linking to the libvpx library, are also potentially impacted by this flaw and are advised to update to the fixed versions of the package.", "threat_severity": "Important"}