Lucene search
K

34 matches found

Rosalinux
Rosalinux
added 2025/06/09 8:53 a.m.7 views

Advisory ROSA-SA-2025-2884

Software: libwebp 1.0.0 OS: ROSA Virtualization 2.1 packageevrstring: libwebp-1.0.0.0-10.0.1.rv3 CVE-ID: CVE-2018-25013 BDU-ID: 2021-03103 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the libwebp library for WebP image encoding and decoding is related to reading beyond buffer boundaries in...

9.1CVSS7.4AI score0.02051EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.37 views

RHEL 7 : libwebp (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libwebp: use of uninitialized value in ReadSymbol CVE-2018-25014 - A heap-based buffer overflow was found...

8.5AI score0.02302EPSS
Exploits0References8
Redos
Redos
added 2024/03/13 12:0 a.m.12 views

ROS-2-1453

2.1453 Multiple vulnerabilities in libwebp 1. Vulnerability description: CVE-2020-36332 A vulnerability in the libwebp library for encoding and decoding WebP images, is related to improper control of internal resource consumption. Exploitation of the vulnerability could allow an attacker acting...

9.8CVSS10AI score0.02662EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/05/17 12:0 a.m.231 views

Amazon Linux 2 : libwebp (ALAS-2023-2048)

The version of libwebp installed on the remote host is prior to 0.3.0-10. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2048 advisory. 2023-08-03: CVE-2018-25014 was added to this advisory. A heap-based buffer overflow was found in libwebp in versions befo...

9.8CVSS7.6AI score0.0223EPSS
Exploits0References6
Amazon
Amazon
added 2023/05/16 12:0 a.m.66 views

Medium: libwebp

Issue Overview: A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ShiftBytes. CVE-2018-25013 Affected Packages: libwebp Issue Correction: Run yum update libwebp or yum update --advisory ALAS-2023-1748 to update your system. New Packages: i686: ...

9.1CVSS8.4AI score0.02051EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/06 4:18 p.m.32 views

Security Bulletin: Spoofing vulnerability affect IBM Business Automation Workflow - Process Federation Server component - CVE-2018-25013

Summary Process Federation Server shipped with IBM Business Automation Workflow are vulnerable to a Spoofing attack. Vulnerability Details CVEID:CVE-2018-25031 DESCRIPTION: swagger-ui could allow a remote attacker to conduct spoofing attacks. By persuading a victim to open a specially-crafted URL...

9.1CVSS7.1AI score0.42326EPSS
Exploits4Affected Software1
OpenVAS
OpenVAS
added 2022/02/13 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for libwebp (EulerOS-SA-2022-1081)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.0223EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/02/12 12:0 a.m.39 views

EulerOS Virtualization 3.0.6.0 : libwebp (EulerOS-SA-2022-1081)

According to the versions of the libwebp package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ShiftBytes. The highest threat...

9.8CVSS7.2AI score0.0223EPSS
Exploits0References4
Redos
Redos
added 2021/12/24 12:0 a.m.14 views

ROS-2-1622

2.1622 Multiple vulnerabilities in libwebp 1. Vulnerability description: CVE-2020-36332 A vulnerability in the libwebp library for encoding and decoding WebP images, is related to improper control of internal resource consumption. Exploitation of the vulnerability could allow an attacker acting...

9.8CVSS10AI score0.02662EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/11/11 12:0 a.m.36 views

RHEL 8 : libwebp (RHSA-2021:4231)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:4231 advisory. The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital...

9.8CVSS7.6AI score0.02302EPSS
Exploits0References20
RedHat Linux
RedHat Linux
added 2021/11/09 6:44 p.m.60 views

Moderate: Red Hat Security Advisory: libwebp security update

An update for libwebp is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.8CVSS6.8AI score0.02302EPSS
Exploits0References10
OSV
OSV
added 2021/11/09 8:47 a.m.29 views

RLSA-2021:4231 Moderate: libwebp security update

The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format RIFF. Webmasters, web...

9.8CVSS7.7AI score0.02302EPSS
Exploits0References9
AlmaLinux
AlmaLinux
added 2021/11/09 8:47 a.m.42 views

Moderate: libwebp security update

The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format RIFF. Webmasters, web...

9.8CVSS7.7AI score0.02302EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2021/09/14 12:0 a.m.40 views

EulerOS 2.0 SP2 : libwebp (EulerOS-SA-2021-2403)

According to the versions of the libwebp package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkAssignData. The highest threat from this...

9.8CVSS7.6AI score0.02662EPSS
Exploits0References10
Redos
Redos
added 2021/09/08 12:0 a.m.14 views

ROS-2-692

2.692 Multiple vulnerabilities in libwebp 1. Vulnerability Description: CVE-2020-36332 A vulnerability in the libwebp library for encoding and decoding WebP images, is related to improper control of internal resource consumption. Exploitation of the vulnerability could allow an attacker acting...

9.8CVSS6.3AI score0.05107EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.10 views

ROS-2-1486

2.1486 Multiple vulnerabilities in libwebp 1. Vulnerability Description: CVE-2020-36332 A vulnerability in the libwebp library for encoding and decoding WebP images, is related to improper control of internal resource consumption. Exploitation of the vulnerability could allow an attacker acting...

9.8CVSS8.7AI score0.99295EPSS
Exploits81
OpenVAS
OpenVAS
added 2021/08/09 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for libwebp (EulerOS-SA-2021-2305)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.0223EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/08/09 12:0 a.m.36 views

EulerOS 2.0 SP8 : libwebp (EulerOS-SA-2021-2305)

According to the versions of the libwebp package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ShiftBytes. The highest threat from this...

9.8CVSS7.2AI score0.0223EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/07/16 12:0 a.m.33 views

openSUSE 15 Security Update : libwebp (openSUSE-SU-2021:1860-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1860-1 advisory. - A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function WebPMuxCreateInternal. The highest thre...

9.8CVSS7.6AI score0.02662EPSS
Exploits0References31
OpenVAS
OpenVAS
added 2021/07/13 12:0 a.m.30 views

openSUSE: Security Advisory for libwebp (openSUSE-SU-2021:1860-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8AI score0.02662EPSS
Exploits0References2
Rows per page
Query Builder