MiracleLinux 8 : libwebp-1.0.0-5.el8 (AXSA:2021-2754:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2754:03 advisory. libwebp: out-of-bounds read in WebPMuxCreateInternal CVE-2018-25009 libwebp: out-of-bounds read in ApplyFilter CVE-2018-25010 libwebp: out-of-bounds...

MiracleLinux 8 : libwebp-1.0.0-8.el8 (AXSA:2023-5322:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5322:03 advisory. Mozilla: libwebp: Double-free in libwebp CVE-2023-1999 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

TencentOS Server 4: libwebp (TSSA-2024:0939)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0939 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

Advisory ROSA-SA-2025-3064

Software: libwebp 1.0.0 OS: ROSA Virtualization 2.1 unaffected versions = libwebp-1.0.0.0-10.0.1.rv3 affected versions libwebp-1.0.0.0-10.0.1.rv3 CVE-ID: CVE-2023-4863 BDU-ID: TO600, TO601, TO675, TO797, TO826 CVE-Crit: CRITICAL CVE-DESC.: A vulnerability in the libwebp library for WebP image...

Advisory ROSA-SA-2025-3047

Software: libwebp 1.0.0 OS: ROSA Virtualization 3.1 unaffected versions = libwebp-1.0.0.0-10.0.1.rv31 affected versions libwebp-1.0.0.0-10.0.1.rv31 CVE-ID: CVE-2018-25009 BDU-ID: CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the libwebp library for WebP image encoding and decoding is related to...

EUVD-2020-23869

Malware in sbrugna...

EUVD-2018-13793

Malware in sbrugna...

EUVD-2020-23865

Malware in sbrugna...

EUVD-2020-23868

Malware in sbrugna...

EUVD-2018-13795

Malware in sbrugna...

EUVD-2018-13794

Malware in sbrugna...

EUVD-2018-13790

Malware in sbrugna...

EUVD-2020-23867

Malware in sbrugna...

EUVD-2020-23866

Malware in sbrugna...

EUVD-2023-24179

Malicious code in bioql PyPI...

SUSE SLED15 / SLES15 Security Update : libwebp (SUSE-SU-2025:01639-2)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:01639-2 advisory. - CVE-2016-9969: freeing of uninitialized memory pointer in SetFrame of AnimEncoder can lead to double free bsc1136199...

TencentOS Server 3: libwebp (TSSA-2023:0225)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0225 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

Advisory ROSA-SA-2025-2884

Software: libwebp 1.0.0 OS: ROSA Virtualization 2.1 packageevrstring: libwebp-1.0.0.0-10.0.1.rv3 CVE-ID: CVE-2018-25013 BDU-ID: 2021-03103 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the libwebp library for WebP image encoding and decoding is related to reading beyond buffer boundaries in...

SUSE SLED15 / SLES15 Security Update : libwebp (SUSE-SU-2025:01639-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:01639-1 advisory. - CVE-2016-9969: freeing of uninitialized memory pointer in SetFrame of AnimEncoder can lead to double free bsc1136199...

SUSE CVE-2023-1999

There exists a use after free/double free in libwebp. An attacker can use the ApplyFiltersAndEncode function and loop through to free best.bw and assign best = trial pointer. The second loop will then return 0 because of an Out of memory error in VP8 encoder, the pointer is still assigned to tria...