23 matches found
RHEL 7 : libwebp (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libwebp: use of uninitialized value in ReadSymbol CVE-2018-25014 - A heap-based buffer overflow was found...
ROS-2-1453
2.1453 Multiple vulnerabilities in libwebp 1. Vulnerability description: CVE-2020-36332 A vulnerability in the libwebp library for encoding and decoding WebP images, is related to improper control of internal resource consumption. Exploitation of the vulnerability could allow an attacker acting...
RHEL 8 : libwebp (RHSA-2021:4231)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:4231 advisory. The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital...
Moderate: Red Hat Security Advisory: libwebp security update
An update for libwebp is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
RLSA-2021:4231 Moderate: libwebp security update
The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format RIFF. Webmasters, web...
Moderate: libwebp security update
The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format RIFF. Webmasters, web...
ROS-2-692
2.692 Multiple vulnerabilities in libwebp 1. Vulnerability Description: CVE-2020-36332 A vulnerability in the libwebp library for encoding and decoding WebP images, is related to improper control of internal resource consumption. Exploitation of the vulnerability could allow an attacker acting...
ROS-2-1486
2.1486 Multiple vulnerabilities in libwebp 1. Vulnerability Description: CVE-2020-36332 A vulnerability in the libwebp library for encoding and decoding WebP images, is related to improper control of internal resource consumption. Exploitation of the vulnerability could allow an attacker acting...
openSUSE 15 Security Update : libwebp (openSUSE-SU-2021:1860-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1860-1 advisory. - A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function WebPMuxCreateInternal. The highest thre...
openSUSE: Security Advisory for libwebp (openSUSE-SU-2021:1860-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for libwebp (critical)
openSUSE Security Update: Security update for libwebp Announcement ID: openSUSE-SU-2021:1860-1 Rating: critical References: 1185652 1185654 1185673 1185674 1185685 1185686 1185688 1185690 1185691 1186247 Cross-References: CVE-2018-25009 CVE-2018-25010 CVE-2018-25011 CVE-2018-25012 CVE-2018-25013...
USN-4971-1: libwebp vulnerabilities | Cloud Foundry
Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description It was discovered that libwebp incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image file, a remote attacker could use this issue ...
Ubuntu 16.04 ESM : libwebp vulnerabilities (USN-4971-2)
The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4971-2 advisory. USN-4971-1 fixed several vulnerabilities in libwebp. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Tenable has...
CVE-2018-25010 affecting package libwebp 1.0.0-4
CVE-2018-25010 affecting package libwebp 1.0.0-4. An upgraded version of the package is available that resolves this issue...
Debian DLA-2677-1 : libwebp security update
Multiple security issues have been discovered in libwebp CVE-2018-25009 An out-of-bounds read was found in function WebPMuxCreateInternal. The highest threat from this vulnerability is to data confidentiality and to the service availability. CVE-2018-25010 An out-of-bounds read was found in...
SUSE SLED15: libwebp-devel / libwebp6 / libwebp6-32bit / libwebpdecoder2 / etc (SUSE-SU-2021:1860-1)
The remote SUSE Linux SLED15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:1860-1 advisory. - CVE-2018-25010: Fixed heap-based buffer overflow in ApplyFilter bsc1185685. - CVE-2020-36330: Fixed heap-based buffer...
[SECURITY] [DLA 2677-1] libwebp security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2677-1 [email protected] https://www.debian.org/lts/security/ Anton Gladky June 05, 2021 https://wiki.debian.org/LTS -...
SUSE-SU-2021:1860-1 Security update for libwebp
This update for libwebp fixes the following issues: - CVE-2018-25010: Fixed heap-based buffer overflow in ApplyFilter bsc1185685. - CVE-2020-36330: Fixed heap-based buffer overflow in ChunkVerifyAndAssign bsc1185691. - CVE-2020-36332: Fixed extreme memory allocation when reading a file bsc1185674...
SUSE SLES12 Security Update : libwebp (SUSE-SU-2021:1830-1)
This update for libwebp fixes the following issues : CVE-2018-25010: Fixed heap-based buffer overflow in ApplyFilter bsc1185685. CVE-2020-36330: Fixed heap-based buffer overflow in ChunkVerifyAndAssign bsc1185691. CVE-2020-36332: Fixed extreme memory allocation when reading a file bsc1185674...
Ubuntu 18.04 LTS / 20.04 LTS : libwebp vulnerabilities (USN-4971-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4971-1 advisory. It was discovered that libwebp incorrectly handled certain malformed images. If a user or automated system were tricked into opening a...