rpm package
suse/libwebp&distro=SUSE Linux Enterprise Real Time 15 SP3
pkg:rpm/suse/libwebp&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-1999 | — | < 1.0.3-150200.3.5.1 | 1.0.3-150200.3.5.1 | Jun 20, 2023 | There exists a use after free/double free in libwebp. An attacker can use the ApplyFiltersAndEncode() function and loop through to free best.bw and assign best = trial pointer. The second loop will then return 0 because of an Out of memory error in VP8 encoder, the pointer is sti |
- CVE-2023-1999Jun 20, 2023affected < 1.0.3-150200.3.5.1fixed 1.0.3-150200.3.5.1
There exists a use after free/double free in libwebp. An attacker can use the ApplyFiltersAndEncode() function and loop through to free best.bw and assign best = trial pointer. The second loop will then return 0 because of an Out of memory error in VP8 encoder, the pointer is sti