We are aware of this issue being exploited in other products in the wild." Mozilla notes on the security advisory website: "Specific handling of an attacker-controlled VP8 media stream could lead to a heap buffer overflow in the content process. The free tool is open source and widely used in web browsers. Libvpx is a software video codec library developed by Google and the Alliance for Open Media. The security issue is the same that Google addressed in Chromium and Google Chrome yesterday.ĬVE-2023-5217: Heap buffer overflow in libvpx, is a critical security issue in libvpx. Firefox ESR is updated to 115.3.1, and the two Android-based browsers are updated to version 118.1.0. The desktop version of Firefox is updated to version 118.0.1 to address the issue. The update is available for Firefox and Firefox ESR for desktop operating system, for Firefox Focus and for Firefox for Android.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |