Описание
A use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol().
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libwebp | fixed | 0.6.1-2.1 | package |
Примечания
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=9496
EPSS
Процентиль: 68%
0.00578
Низкий
Связанные уязвимости
CVSS3: 9.8
ubuntu
больше 4 лет назад
A use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol().
CVSS3: 9.8
redhat
больше 7 лет назад
A use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol().
CVSS3: 9.8
nvd
больше 4 лет назад
A use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol().
CVSS3: 9.8
msrc
больше 4 лет назад
A use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol().
CVSS3: 9.8
github
больше 3 лет назад
A flaw was found in libwebp in versions before 1.0.1. An unitialized variable is used in function ReadSymbol. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
EPSS
Процентиль: 68%
0.00578
Низкий