Количество 37
Количество 37
BDU:2021-03100
Уязвимость библиотеки libwebp для кодирования и декодирования изображений в формате WebP, связанная с переполнением буфера в «куче», позволяющая нарушителю выполнить произвольный код
CVE-2018-25014
A use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol().
CVE-2018-25014
A use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol().
CVE-2018-25014
A use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol().
CVE-2018-25014
CVE-2018-25014
A use of uninitialized value was found in libwebp in versions before 1 ...
CVE-2020-36329
A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a thread being killed too early. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
CVE-2020-36329
A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a thread being killed too early. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
CVE-2020-36329
A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a thread being killed too early. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
CVE-2020-36329
CVE-2020-36329
A flaw was found in libwebp in versions before 1.0.1. A use-after-free ...
GHSA-rr28-4v9r-6wcq
A flaw was found in libwebp in versions before 1.0.1. An unitialized variable is used in function ReadSymbol. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
BDU:2021-03106
Уязвимость библиотеки libwebp для кодирования и декодирования изображений в формате WebP, связанная с использованием неинициализированной переменной, позволяющая нарушителю выполнить произвольный код
GHSA-mprg-gw36-367p
A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a thread being killed too early. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
BDU:2021-03101
Уязвимость библиотеки libwebp для кодирования и декодирования изображений в формате WebP, связанная с использованием памяти после ее освобождения, позволяющая нарушителю выполнить произвольный код
RLSA-2021:4231
Moderate: libwebp security update
ELSA-2021-4231
ELSA-2021-4231: libwebp security update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2021-03100 Уязвимость библиотеки libwebp для кодирования и декодирования изображений в формате WebP, связанная с переполнением буфера в «куче», позволяющая нарушителю выполнить произвольный код | CVSS3: 8.8 | 1% Низкий | около 4 лет назад |
 | CVE-2018-25014 A use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol(). | CVSS3: 9.8 | 0% Низкий | около 4 лет назад |
 | CVE-2018-25014 A use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol(). | CVSS3: 9.8 | 0% Низкий | почти 7 лет назад |
 | CVE-2018-25014 A use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol(). | CVSS3: 9.8 | 0% Низкий | около 4 лет назад |
 | CVSS3: 9.8 | 0% Низкий | около 4 лет назад | |
| CVE-2018-25014 A use of uninitialized value was found in libwebp in versions before 1 ... | CVSS3: 9.8 | 0% Низкий | около 4 лет назад |
| CVE-2020-36329 A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a thread being killed too early. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | CVSS3: 9.8 | 1% Низкий | около 4 лет назад |
| CVE-2020-36329 A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a thread being killed too early. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | CVSS3: 9.8 | 1% Низкий | больше 5 лет назад |
| CVE-2020-36329 A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a thread being killed too early. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | CVSS3: 9.8 | 1% Низкий | около 4 лет назад |
| CVSS3: 9.8 | 1% Низкий | около 4 лет назад | |
| CVE-2020-36329 A flaw was found in libwebp in versions before 1.0.1. A use-after-free ... | CVSS3: 9.8 | 1% Низкий | около 4 лет назад |
| GHSA-rr28-4v9r-6wcq A flaw was found in libwebp in versions before 1.0.1. An unitialized variable is used in function ReadSymbol. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | CVSS3: 9.8 | 0% Низкий | около 3 лет назад |
| BDU:2021-03106 Уязвимость библиотеки libwebp для кодирования и декодирования изображений в формате WebP, связанная с использованием неинициализированной переменной, позволяющая нарушителю выполнить произвольный код | CVSS3: 8.8 | 0% Низкий | около 4 лет назад |
| GHSA-mprg-gw36-367p A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a thread being killed too early. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | CVSS3: 9.8 | 1% Низкий | около 3 лет назад |
| BDU:2021-03101 Уязвимость библиотеки libwebp для кодирования и декодирования изображений в формате WebP, связанная с использованием памяти после ее освобождения, позволяющая нарушителю выполнить произвольный код | CVSS3: 8.8 | 1% Низкий | около 4 лет назад |
 | RLSA-2021:4231 Moderate: libwebp security update | больше 3 лет назад | ||
| ELSA-2021-4231 ELSA-2021-4231: libwebp security update (MODERATE) | больше 3 лет назад |
Уязвимостей на страницу