Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2020-36331

Опубликовано: 21 мая 2021
Источник: debian
EPSS Низкий

Описание

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkAssignData. The highest threat from this vulnerability is to data confidentiality and to the service availability.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
libwebpfixed0.6.1-2.1package

Примечания

  • https://bugs.chromium.org/p/webp/issues/detail?id=388

  • https://chromium.googlesource.com/webm/libwebp/+/be738c6d396fa5a272c1b209be4379a7532debfe

EPSS

Процентиль: 50%
0.00269
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2020-36331

CVSS3: 9.1
ubuntu
около 4 лет назад

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkAssignData. The highest threat from this vulnerability is to data confidentiality and to the service availability.

redhat логотип

CVE-2020-36331

CVSS3: 9.1
redhat
больше 4 лет назад

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkAssignData. The highest threat from this vulnerability is to data confidentiality and to the service availability.

nvd логотип

CVE-2020-36331

CVSS3: 9.1
nvd
около 4 лет назад

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkAssignData. The highest threat from this vulnerability is to data confidentiality and to the service availability.

msrc логотип

CVE-2020-36331

CVSS3: 9.1
msrc
около 4 лет назад

Описание отсутствует

github логотип

GHSA-hrq2-3wxg-w5m6

CVSS3: 9.1
github
около 3 лет назад

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkAssignData. The highest threat from this vulnerability is to data confidentiality and to the service availability.

EPSS

Процентиль: 50%
0.00269
Низкий