Known Vulnerabilities for Libwebp by Webmproject
Listed below are 10 of the newest known vulnerabilities associated with "Libwebp" by "Webmproject".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2020-36332 | A flaw was found in libwebp in versions before 1.0.1. When reading a file libwebp allocates an excessive amount of memory. Th... | 7.5 - HIGH | 2021-05-21 | 2023-11-07 |
| CVE-2020-36331 | A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkAssignData. The highes... | 9.1 - CRITICAL | 2021-05-21 | 2023-01-09 |
| CVE-2020-36330 | A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The h... | 9.1 - CRITICAL | 2021-05-21 | 2021-11-30 |
| CVE-2020-36329 | A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a thread being killed too early. The ... | 9.8 - CRITICAL | 2021-05-21 | 2023-01-09 |
| CVE-2020-36328 | A flaw was found in libwebp in versions before 1.0.1. A heap-based buffer overflow in function WebPDecodeRGBInto is possible ... | 9.8 - CRITICAL | 2021-05-21 | 2023-01-09 |
| CVE-2018-25013 | A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ShiftBytes(). | 9.1 - CRITICAL | 2021-05-21 | 2023-02-09 |
| CVE-2018-25012 | A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in GetLE24(). | 9.1 - CRITICAL | 2021-05-21 | 2023-02-28 |
| CVE-2018-25011 | A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in PutLE16(). | 9.8 - CRITICAL | 2021-05-21 | 2023-02-10 |
| CVE-2018-25010 | A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ApplyFilter(). | 9.1 - CRITICAL | 2021-05-21 | 2023-02-10 |
| CVE-2018-25009 | A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in GetLE16(). | 9.1 - CRITICAL | 2021-05-21 | 2023-02-17 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Webmproject | Libwebp | 1.0.3 | All | All | All |
| Application | Webmproject | Libwebp | 1.0.2 | All | All | All |
| Application | Webmproject | Libwebp | 1.0.1 | All | All | All |
| Application | Webmproject | Libwebp | 1.0.0 | All | All | All |
| Application | Webmproject | Libwebp | 0.6.1 | All | All | All |
| Application | Webmproject | Libwebp | 0.6.0 | All | All | All |
| Application | Webmproject | Libwebp | 0.5.2 | All | All | All |
| Application | Webmproject | Libwebp | 0.5.1 | All | All | All |
| Application | Webmproject | Libwebp | 0.5.0 | All | All | All |
| Application | Webmproject | Libwebp | 0.4.4 | All | All | All |
| Application | Webmproject | Libwebp | 0.4.3 | All | All | All |
| Application | Webmproject | Libwebp | 0.4.2 | All | All | All |
| Application | Webmproject | Libwebp | 0.4.1 | All | All | All |
| Application | Webmproject | Libwebp | 0.4.0 | All | All | All |
| Application | Webmproject | Libwebp | 0.3.1 | All | All | All |
| Application | Webmproject | Libwebp | 0.3.0 | All | All | All |
| Application | Webmproject | Libwebp | 0.2.1 | All | All | All |
| Application | Webmproject | Libwebp | 0.2.0 | All | All | All |
| Application | Webmproject | Libwebp | 0.1.99 | All | All | All |
| Application | Webmproject | Libwebp | 0.1.3 | All | All | All |