CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Rosalinux•added 2024/02/20 10:32 a.m.•31 views

Advisory ROSA-SA-2024-2358

Software: libwebp 1.2.3 OS: ROSA-CHROME packageevrstring: libwebp-1.2.3-1.src.rpm CVE-ID: CVE-2023-1999 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: There is a use after free/double free in libwebp. An attacker could use ApplyFiltersAndEncode to free best.bw and assign the pointer best = Trial. The...

Tenable Nessus•added 2024/01/16 12:0 a.m.•15 views

Exploits0

EulerOS Virtualization 3.0.6.6 : libwebp (EulerOS-SA-2023-3402)

According to the versions of the libwebp package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - There exists a use after free/double free in libwebp. An attacker can use the ApplyFiltersAndEncode function and loop through to...

Tenable Nessus•added 2024/01/16 12:0 a.m.•25 views

EulerOS 2.0 SP11 : libwebp (EulerOS-SA-2023-2653)

According to the versions of the libwebp package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - There exists a use after free/double free in libwebp. An attacker can use the ApplyFiltersAndEncode function and loop through to free best.bw an...

Tenable Nessus•added 2024/01/16 12:0 a.m.•16 views

EulerOS Virtualization 2.9.1 : libwebp (EulerOS-SA-2023-2961)

OpenVAS•added 2023/12/14 12:0 a.m.•18 views

Huawei EulerOS: Security Advisory for libwebp (EulerOS-SA-2023-3402)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.4AI score0.00353EPSS

GithubExploit•added 2023/10/06 5:46 a.m.•492 views

Exploit for Out-of-bounds Write in Webmproject Libvpx

CVE-2023-5217: libvpx VP8 Encoding Heap Overflow PoC CVE-2023...

8.8CVSS10AI score0.04976EPSS

Exploits3

OpenVAS•added 2023/10/02 12:0 a.m.•22 views

Slackware: Security Advisory (SSA:2023-273-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.5AI score0.04976EPSS

Exploits3References7

Tenable Nessus•added 2023/08/08 12:0 a.m.•22 views

EulerOS 2.0 SP9 : libwebp (EulerOS-SA-2023-2618)

Tenable Nessus•added 2023/08/08 12:0 a.m.•19 views

EulerOS 2.0 SP9 : libwebp (EulerOS-SA-2023-2588)

Tenable Nessus•added 2023/08/02 12:0 a.m.•24 views

EulerOS Virtualization 2.10.0 : libwebp (EulerOS-SA-2023-2562)

Tenable Nessus•added 2023/07/28 12:0 a.m.•106 views

CentOS 7 : libwebp (RHSA-2023:2077)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:2077 advisory. - There exists a use after free/double free in libwebp. An attacker can use the ApplyFiltersAndEncode function and loop through to free best.bw and assign best ...

Tenable Nessus•added 2023/07/18 12:0 a.m.•15 views

Ubuntu 16.04 ESM : libwebp vulnerability (USN-6078-2)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-6078-2 advisory. USN-6078-1 fixed a vulnerability in libwebp. This update provides the corresponding update for Ubuntu 16.04 LTS. Tenable has extracted the preceding description...

Tenable Nessus•added 2023/07/18 12:0 a.m.•25 views

EulerOS 2.0 SP10 : libwebp (EulerOS-SA-2023-2359)

OSV•added 2023/06/20 12:15 p.m.•22 views

CVE-2023-1999

There exists a use after free/double free in libwebp. An attacker can use the ApplyFiltersAndEncode function and loop through to free best.bw and assign best = trial pointer. The second loop will then return 0 because of an Out of memory error in VP8 encoder, the pointer is still assigned to tria...

7.5CVSS7.1AI score