CVE-2021-28903

A flaw was found in libyang. An uncontrolled recursion in lyxmlparseelem function allows a remote attacker to crash an application that uses libyang with user-controlled XML data. The highest threat from this vulnerability is the service availability...

CVE-2021-28904

A flaw was found in libyang. A NULL pointer dereference in extgetplugin function allows a remote attacker to crash an application that uses libyang with user-controlled YANG data. The highest threat from this vulnerability is the service availability...

Libwebp out-of-bounds read vulnerability (CNVD-2021-37654)

Libwebp is a WebP image format encoding and decoding library . An out-of-bounds read vulnerability exists in Libwebp versions prior to 1.0.1. An attacker could exploit the vulnerability to threaten data confidentiality and service availability...

Libwebp out-of-bounds read vulnerability (CNVD-2021-37657)

Libwebp is a WebP image format encoding and decoding library . A security vulnerability exists in versions of Libwebp prior to 1.0.1. An attacker could exploit the vulnerability to threaten data confidentiality and service availability...

Libwebp out-of-bounds read vulnerability (CNVD-2021-37661)

Libwebp is a WebP image format encoding and decoding library . A security vulnerability exists in versions of Libwebp prior to 1.0.1. An attacker could exploit the vulnerability to threaten data confidentiality and service availability...

Libwebp out-of-bounds read vulnerability (CNVD-2021-37656)

Libwebp is a WebP image format encoding and decoding library . Libwebp versions prior to 1.0.1 are fully vulnerable. An attacker can exploit the vulnerability to threaten data confidentiality and service availability...

Libwebp out-of-bounds read vulnerability (CNVD-2021-37659)

Libwebp is a WebP image format encoding and decoding library . A security vulnerability exists in versions of Libwebp prior to 1.0.1. An attacker could exploit the vulnerability to threaten data confidentiality and service availability...

Libwebp Out-of-Bounds Read Vulnerability

Libwebp is a WebP image format encoding and decoding library . A security vulnerability exists in versions of Libwebp prior to 1.0.1. The vulnerability stems from a read out-of-bounds in WebPMuxCreateInternal and can be exploited by an attacker to threaten data confidentiality and service...

CVE-2020-36332

A flaw was found in libwebp in versions before 1.0.1. When reading a file libwebp allocates an excessive amount of memory. The highest threat from this vulnerability is to the service availability...

CVE-2020-36331

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkAssignData. The highest threat from this vulnerability is to data confidentiality and to the service availability...

DEBIAN-CVE-2020-36332

A flaw was found in libwebp in versions before 1.0.1. When reading a file libwebp allocates an excessive amount of memory. The highest threat from this vulnerability is to the service availability...

CVE-2020-36330

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability...

CVE-2020-36332

A flaw was found in libwebp in versions before 1.0.1. When reading a file libwebp allocates an excessive amount of memory. The highest threat from this vulnerability is to the service availability...

CVE-2020-36331

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkAssignData. The highest threat from this vulnerability is to data confidentiality and to the service availability...

DEBIAN-CVE-2020-36331

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkAssignData. The highest threat from this vulnerability is to data confidentiality and to the service availability...

CVE-2020-36330

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability...

Design/Logic Flaw

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability...

Design/Logic Flaw

A flaw was found in libwebp in versions before 1.0.1. When reading a file libwebp allocates an excessive amount of memory. The highest threat from this vulnerability is to the service availability...

Out-of-bounds

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkAssignData. The highest threat from this vulnerability is to data confidentiality and to the service availability...

CVE-2020-36332

CVE-2020-36332 affects the libwebp library (versions before 1.0.1). The issue is an excessive memory allocation when reading a file, as described across multiple connected advisories (e.g., AlmaLinux, Debian DSA, CNVD). Impact is primarily availability-related (denial of service potential). Affec...