CVE-2018-25011

Опубликовано: 21 мая 2021

Источник: debian

Описание

A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in PutLE16().

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libwebp	fixed	0.6.1-2.1		package

Примечания

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=9119

Связанные уязвимости

CVE-2018-25011

CVSS3: 9.8

ubuntu

больше 4 лет назад

A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in PutLE16().

CVE-2018-25011

CVSS3: 9.8

redhat

больше 7 лет назад

A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in PutLE16().

CVE-2018-25011

CVSS3: 9.8

nvd

больше 4 лет назад

A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in PutLE16().

CVE-2018-25011

CVSS3: 9.8

msrc

больше 4 лет назад

A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in PutLE16().

GHSA-vqgc-g267-8p6w

CVSS3: 9.8

github

больше 3 лет назад

A flaw was found in libwebp in versions before 1.0.1. A heap-based buffer overflow was found in PutLE16(). The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.