Heap buffer overflow in libwebp vulnerability - CVE-2023-4863: 

CVE-2023-5129 has been rejected / withdrawn as it's a duplicate of Duplicate of CVE-2023-4863.
· Symantec has provided a signature for CVE-2023-4863 (Web Attack: WebP Heap Overflow). 

CVE-2023-4863 is a recently disclosed (CVSS score: 8.8 High) critical heap buffer overflow vulnerability in libwebp, a graphics file format. This vulnerability resides within the Huffman coding algorithm used by libwebp for lossless compression. If exploited the vulnerability enables remote attackers to perform out-of-bounds memory writes using maliciously crafted HTML pages. This type of exploit can have severe consequences, such as unauthorized access to sensitive information and crashes due to arbitrary code execution.

Release: 14.3 RU6

This vulnerability has not been observed in email based attacks. Both Symantec Link Following and Webpulse technologies protect against such URL based attacks.
A new vulnerability, identified as CVE-2023-5129, has been rejected by the CVE Numbering Authority, as being a duplicate of CVE-2023-4863.

Symantec protects you from this threat, identified by the following:

File-based
Exp.CVE-2023-4863

Network-based
Web Attack: WebP Heap Overflow CVE-2023-4863