all InfoSec news
CVE-2023-5129 (libwebp)
Sept. 25, 2023, 9:15 p.m. |
National Vulnerability Database web.nvd.nist.gov
The ReadHuffmanCodes() function allocates the HuffmanCode buffer with a size that comes from an array of precomputed sizes: kTableSize. The color_cache_bits value defines which size to use.
The kTableSize array only takes into account sizes for 8-bit first-level table lookups but not second-level table lookups. libwebp allows codes that are up to 15-bit (MAX_ALLOWED_CODE_LENGTH). When BuildHuffmanTable() attempts to fill the second-level tables it …
account array buffer cve cve-2023-5129 data file function libwebp may size value webp
More from web.nvd.nist.gov / National Vulnerability Database
CVE-2023-45955 (lightstrip_firmware)
6 months, 3 weeks ago |
web.nvd.nist.gov
CVE-2023-21380 (android)
6 months, 3 weeks ago |
web.nvd.nist.gov
CVE-2023-21381 (android)
6 months, 3 weeks ago |
web.nvd.nist.gov
CVE-2023-21385 (android)
6 months, 3 weeks ago |
web.nvd.nist.gov
Jobs in InfoSec / Cybersecurity
Sr. Product Manager
@ MixMode | Remote, US
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Incident Response Lead(IR)
@ Blue Yonder | Hyderabad
Comcast Cybersecurity: Privacy Operations Executive Director
@ Comcast | PA - Philadelphia, 1701 John F Kennedy Blvd