Google Chrome libvpx堆缓冲区溢出漏洞(CVE-2023-5217)

admin

0
文章

0
评论

2023-11-29 20:55:35 Ali_nvd 来源：ZONE.CI 全球网 0 阅读模式

中危 Google Chrome libvpx堆缓冲区溢出漏洞(CVE-2023-5217)

CVE编号

CVE-2023-5217

利用情况

暂无

补丁情况

官方补丁

披露时间

2023-09-29

漏洞描述

Google Chrome中的 libvpx 模块是一个用于处理视频编解码的库。 Google Chrom <117.0.5938.132版本中libvpx模块（<1.13.1）存在堆溢出漏洞，攻击者诱导用户打开并加载恶意的视频文件，导致浏览器堆缓冲区溢出，从而执行任意代码。

解决建议

将组件 Google Chrome 升级至 117.0.5938.132 及以上版本；将libvpx升级至1.13.1及以上版本。

参考链接
http://seclists.org/fulldisclosure/2023/Oct/12
http://seclists.org/fulldisclosure/2023/Oct/16
http://www.openwall.com/lists/oss-security/2023/09/28/5
http://www.openwall.com/lists/oss-security/2023/09/28/6
http://www.openwall.com/lists/oss-security/2023/09/29/1
http://www.openwall.com/lists/oss-security/2023/09/29/11
http://www.openwall.com/lists/oss-security/2023/09/29/12
http://www.openwall.com/lists/oss-security/2023/09/29/14
http://www.openwall.com/lists/oss-security/2023/09/29/2
http://www.openwall.com/lists/oss-security/2023/09/29/7
http://www.openwall.com/lists/oss-security/2023/09/29/9
http://www.openwall.com/lists/oss-security/2023/09/30/1
http://www.openwall.com/lists/oss-security/2023/09/30/2
http://www.openwall.com/lists/oss-security/2023/09/30/3
http://www.openwall.com/lists/oss-security/2023/09/30/4
http://www.openwall.com/lists/oss-security/2023/09/30/5
http://www.openwall.com/lists/oss-security/2023/10/01/1
http://www.openwall.com/lists/oss-security/2023/10/01/2
http://www.openwall.com/lists/oss-security/2023/10/01/5
http://www.openwall.com/lists/oss-security/2023/10/02/6
http://www.openwall.com/lists/oss-security/2023/10/03/11
https://arstechnica.com/security/2023/09/new-0-day-in-chrome-and-firefox-is-l...
https://bugzilla.redhat.com/show_bug.cgi?id=2241191
https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-deskt...
https://crbug.com/1486441
https://github.com/webmproject/libvpx/commit/3fbd1dca6a4d2dad332a2110d646e4ffef36d590
https://github.com/webmproject/libvpx/commit/af6dedd715f4307669366944cca6e0417b290282
https://github.com/webmproject/libvpx/releases/tag/v1.13.1
https://github.com/webmproject/libvpx/tags
https://lists.debian.org/debian-lts-announce/2023/09/msg00038.html
https://lists.debian.org/debian-lts-announce/2023/10/msg00001.html
https://lists.debian.org/debian-lts-announce/2023/10/msg00015.html
https://lists.fedoraproject.org/archives/list/[email protected]...
https://lists.fedoraproject.org/archives/list/[email protected]...
https://lists.fedoraproject.org/archives/list/[email protected]...
https://lists.fedoraproject.org/archives/list/[email protected]...
https://lists.fedoraproject.org/archives/list/[email protected]...
https://lists.fedoraproject.org/archives/list/[email protected]...
https://lists.fedoraproject.org/archives/list/[email protected]...
https://pastebin.com/TdkC4pDv
https://security-tracker.debian.org/tracker/CVE-2023-5217
https://security.gentoo.org/glsa/202310-04
https://stackdiary.com/google-discloses-a-webm-vp8-bug-tracked-as-cve-2023-5217/
https://support.apple.com/kb/HT213961
https://support.apple.com/kb/HT213972
https://twitter.com/maddiestone/status/1707163313711497266
https://www.debian.org/security/2023/dsa-5508
https://www.debian.org/security/2023/dsa-5509
https://www.debian.org/security/2023/dsa-5510
https://www.mozilla.org/en-US/security/advisories/mfsa2023-44/
https://www.openwall.com/lists/oss-security/2023/09/28/5

受影响软件情况

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	应用	google	chrome	*		Up to (excluding) 117.0.5938.132
	运行在以下环境
	应用	mozilla	firefox	*		Up to (excluding) 118.0.1
	运行在以下环境
	应用	mozilla	firefox	*		Up to (excluding) 118.1
	运行在以下环境
	应用	mozilla	firefox_esr	*		Up to (excluding) 115.3.1
	运行在以下环境
	应用	mozilla	firefox_focus	*		Up to (excluding) 118.1
	运行在以下环境
	应用	webmproject	libvpx	*		Up to (excluding) 1.13.1
	运行在以下环境
	系统	alpine_3.17	libvpx	*		Up to (excluding) 1.12.0-r2
	运行在以下环境
	系统	alpine_3.18	libvpx	*		Up to (excluding) 115.3.1-r0
	运行在以下环境
	系统	alpine_edge	libvpx	*		Up to (excluding) 115.3.1-r0
	运行在以下环境
	系统	anolis_os_23	firefox	*		Up to (excluding) 115.3.0-1
	运行在以下环境
	系统	anolis_os_7	firefox	*		Up to (excluding) 115.3.1-1.0.1
	运行在以下环境
	系统	anolis_os_8	firefox	*		Up to (excluding) 1.7.0-10.0.1
	运行在以下环境
	系统	debian_10	libvpx	*		Up to (including) 90.0.4430.212-1~deb10u1
	运行在以下环境
	系统	debian_11	libvpx	*		Up to (excluding) 117.0.5938.132-1~deb11u1
	运行在以下环境
	系统	debian_12	libvpx	*		Up to (excluding) 117.0.5938.132-1~deb12u1
	运行在以下环境
	系统	debian_sid	libvpx	*		Up to (excluding) 117.0.5938.132-1
	运行在以下环境
	系统	fedora_37	libvpx	*		Up to (excluding) 1.12.0-4.fc37
	运行在以下环境
	系统	fedora_38	libvpx	*		Up to (excluding) 1.13.0-5.fc38
	运行在以下环境
	系统	fedora_39	libvpx	*		Up to (excluding) 118.0.1-4.fc39
	运行在以下环境
	系统	fedora_EPEL_7	libvpx	*		Up to (excluding) 117.0.5938.132-1.el7
	运行在以下环境
	系统	fedora_EPEL_8	libvpx	*		Up to (excluding) 117.0.5938.132-1.el8
	运行在以下环境
	系统	fedora_EPEL_9	libvpx	*		Up to (excluding) 117.0.5938.132-1.el9
	运行在以下环境
	系统	opensuse_Leap_15.4	libvpx	*		Up to (excluding) 117.0.5938.132-bp155.2.40.1
	运行在以下环境
	系统	opensuse_Leap_15.5	libvpx	*		Up to (excluding) 117.0.5938.132-bp155.2.40.1
	运行在以下环境
	系统	oracle_7	oraclelinux-release	*		Up to (excluding) 115.3.1-1.0.1.el7_9
	运行在以下环境
	系统	oracle_8	oraclelinux-release	*		Up to (excluding) 1.7.0-10.el8_8
	运行在以下环境
	系统	oracle_9	oraclelinux-release	*		Up to (excluding) 1.9.0-7.el9_2
	运行在以下环境
	系统	redhat_7	firefox	*		Up to (excluding) 115.3.1-1.el7_9
	运行在以下环境
	系统	redhat_8	firefox	*		Up to (excluding) 1.7.0-10.el8_8
	运行在以下环境
	系统	redhat_9	firefox-x11	*		Up to (excluding) 1.9.0-7.el9_2
	运行在以下环境
	系统	suse_12_SP5	libvpx1	*		Up to (excluding) 115.3.1-112.185.1
	运行在以下环境
系统	ubuntu_20.04	thunderbird	*		Up to (excluding) 1:115.3.1+build1-0ubuntu0.20.04.1
运行在以下环境
系统	ubuntu_22.04	libvpx	*		Up to (excluding) 1.11.0-2ubuntu2.2
运行在以下环境
系统	unionos_a	libvpx	*		Up to (excluding) thunderbird-115.3.1-1.uelc20.02
运行在以下环境
系统	unionos_d	libvpx	*		Up to (excluding) 1.7.0.3-deepin1
运行在以下环境
系统	unionos_e	libvpx	*		Up to (excluding) libvpx-1.7.0-10.uel20