Описание
A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 0.6.1-2ubuntu0.18.04.1 |
| devel | released | 0.6.1-2ubuntu1 |
| esm-infra-legacy/trusty | not-affected | 0.4.0-4ubuntu0.1~esm1 |
| esm-infra/bionic | not-affected | 0.6.1-2ubuntu0.18.04.1 |
| esm-infra/focal | not-affected | 0.6.1-2ubuntu0.20.04.1 |
| esm-infra/xenial | released | 0.4.4-1ubuntu0.1~esm1 |
| focal | released | 0.6.1-2ubuntu0.20.04.1 |
| groovy | released | 0.6.1-2ubuntu0.20.10.1 |
| hirsute | released | 0.6.1-2ubuntu0.21.04.1 |
| impish | released | 0.6.1-2ubuntu1 |
Показывать по
6.4 Medium
CVSS2
9.1 Critical
CVSS3
Связанные уязвимости
A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.
A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.
A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds ...
A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.
6.4 Medium
CVSS2
9.1 Critical
CVSS3