CVE-2018-25009
Description
A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in GetLE16().
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A heap-based buffer over-read in libwebp before 1.0.1's WebPMuxCreateInternal could lead to information disclosure via crafted WebP files.
Vulnerability
A heap-based buffer over-read vulnerability exists in libwebp versions prior to 1.0.1 in GetLE16(), specifically triggered during parsing of the VP8X chunk in WebPMuxCreateInternal. The function does not properly check the available size before reading data, allowing an out-of-bounds read on heap memory [1][2].
Exploitation
An attacker must supply a crafted WebP file with a malicious VP8X chunk that exploits the missing size check. No authentication or special permissions are required; the attacker only needs to induce a target application using libwebp (e.g., a web browser, image viewer, or processing tool) to parse the malformed file [1][2].
Impact
Successful exploitation results in an out-of-bounds heap read, which can lead to information disclosure of adjacent memory contents. In some cases, this could expose sensitive data or aid in further attacks. The vulnerability does not directly allow remote code execution but may lower security boundaries by leaking memory [1][2].
Mitigation
The issue is fixed in libwebp version 1.0.1, released on 2018-07-03. Users should update to 1.0.1 or later [2]. Red Hat and other distributions have released updated packages [1]. There is no known workaround other than applying the patch; no evidence indicates inclusion in CISA KEV.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
37- libwebp/libwebpdescription
- Range: <1.0.1
- osv-coords35 versionspkg:rpm/almalinux/libwebppkg:rpm/almalinux/libwebp-develpkg:rpm/opensuse/libwebp&distro=openSUSE%20Leap%2015.3pkg:rpm/suse/libwebp&distro=HPE%20Helion%20OpenStack%208pkg:rpm/suse/libwebp&distro=SUSE%20Enterprise%20Storage%206pkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP2pkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP3pkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCLpkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSSpkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSSpkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCLpkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP2pkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP3pkg:rpm/suse/libwebp&distro=SUSE%20Manager%20Proxy%204.0pkg:rpm/suse/libwebp&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.0pkg:rpm/suse/libwebp&distro=SUSE%20Manager%20Server%204.0pkg:rpm/suse/libwebp&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/libwebp&distro=SUSE%20OpenStack%20Cloud%208pkg:rpm/suse/libwebp&distro=SUSE%20OpenStack%20Cloud%209pkg:rpm/suse/libwebp&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208pkg:rpm/suse/libwebp&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209
< 1.0.0-5.el8+ 34 more
- (no CPE)range: < 1.0.0-5.el8
- (no CPE)range: < 1.0.0-5.el8
- (no CPE)range: < 0.5.0-3.5.1
- (no CPE)range: < 0.4.3-4.7.1
- (no CPE)range: < 0.5.0-3.5.1
- (no CPE)range: < 0.5.0-3.5.1
- (no CPE)range: < 0.5.0-3.5.1
- (no CPE)range: < 0.5.0-3.5.1
- (no CPE)range: < 0.5.0-3.5.1
- (no CPE)range: < 0.5.0-3.5.1
- (no CPE)range: < 0.5.0-3.5.1
- (no CPE)range: < 0.4.3-4.7.1
- (no CPE)range: < 0.4.3-4.7.1
- (no CPE)range: < 0.4.3-4.7.1
- (no CPE)range: < 0.4.3-4.7.1
- (no CPE)range: < 0.4.3-4.7.1
- (no CPE)range: < 0.5.0-3.5.1
- (no CPE)range: < 0.5.0-3.5.1
- (no CPE)range: < 0.5.0-3.5.1
- (no CPE)range: < 0.4.3-4.7.1
- (no CPE)range: < 0.4.3-4.7.1
- (no CPE)range: < 0.4.3-4.7.1
- (no CPE)range: < 0.5.0-3.5.1
- (no CPE)range: < 0.5.0-3.5.1
- (no CPE)range: < 0.4.3-4.7.1
- (no CPE)range: < 0.5.0-3.5.1
- (no CPE)range: < 0.5.0-3.5.1
- (no CPE)range: < 0.5.0-3.5.1
- (no CPE)range: < 0.5.0-3.5.1
- (no CPE)range: < 0.5.0-3.5.1
- (no CPE)range: < 0.4.3-4.7.1
- (no CPE)range: < 0.4.3-4.7.1
- (no CPE)range: < 0.4.3-4.7.1
- (no CPE)range: < 0.4.3-4.7.1
- (no CPE)range: < 0.4.3-4.7.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- bugs.chromium.org/p/oss-fuzz/issues/detailmitrex_refsource_MISC
- bugzilla.redhat.com/show_bug.cgimitrex_refsource_MISC
- chromium.googlesource.com/webm/libwebp/+/95fd65070662e01cc9170c4444f5c0859a710097mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.