Lucene search
PRIOn knowledge basePRION:CVE-2020-36328HistoryMay 21, 2021 - 5:15 p.m.
Heap overflow
2021-05-2117:15:00
PRIOn knowledge base
www.prio-n.com
10
A flaw was found in libwebp in versions before 1.0.1. A heap-based buffer overflow in function WebPDecodeRGBInto is possible due to an invalid check for buffer size. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ipados | eq | 14.7 | |
| iphone_os | eq | 14.7 | |
| debian_linux | eq | 9.0 | |
| debian_linux | eq | 10.0 | |
| enterprise_linux | eq | 7.0 | |
| enterprise_linux | eq | 8.0 | |
| libwebp | lt | 1.0.1 |
References
seclists.org/fulldisclosure/2021/Jul/54
bugzilla.redhat.com/show_bug.cgi?id=1956829
lists.debian.org/debian-lts-announce/2021/06/msg00005.html
lists.debian.org/debian-lts-announce/2021/06/msg00006.html
security.netapp.com/advisory/ntap-20211112-0001/
support.apple.com/kb/HT212601
www.debian.org/security/2021/dsa-4930
Related
amazon
amazon
Important: libwebp
2021-09-02 22:54:00
Important: libwebp
2021-07-01 01:01:00
Important: qt5-qtimageformats
2021-07-01 01:05:00
nvd
nvd
CVE-2020-36328
2021-05-21 17:15:08
nessus
nessus
Amazon Linux AMI : libwebp (ALAS-2021-1530)
2021-09-09 00:00:00
Rocky Linux 8 : libwebp (RLSA-2021:2354)
2022-02-09 00:00:00
Amazon Linux 2 : libwebp (ALAS-2021-1676)
2021-07-01 00:00:00
cve
cve
CVE-2020-36328
2021-05-21 17:15:08
redhatcve
redhatcve
CVE-2020-36328
2021-05-13 17:59:28
veracode
veracode
Arbitrary Code Execution
2021-06-11 10:31:09
osv
osv
CVE-2020-36328
2021-05-21 17:15:08
Important: libwebp security update
2021-06-08 23:31:29
libwebp vulnerabilities
2021-06-10 13:12:37
debiancve
debiancve
CVE-2020-36328
2021-05-21 17:15:08
cbl_mariner
cbl_mariner
CVE-2020-36328 affecting package libwebp 1.0.0-4
2021-06-09 03:50:29
ubuntucve
ubuntucve
CVE-2020-36328
2020-12-31 00:00:00
cvelist
cvelist
CVE-2020-36328
2021-05-21 16:14:21
rocky
rocky
libwebp security update
2021-06-08 23:31:29
oraclelinux
oraclelinux
libwebp security update
2021-06-10 00:00:00
libwebp security update
2021-06-08 00:00:00
qt5-qtimageformats security update
2021-06-09 00:00:00
almalinux
almalinux
Important: libwebp security update
2021-06-08 23:31:29
redhat
redhat
(RHSA-2021:2364) Important: libwebp security update
2021-06-09 12:54:49
(RHSA-2021:2260) Important: libwebp security update
2021-06-07 10:03:45
(RHSA-2021:2354) Important: libwebp security update
2021-06-08 23:31:29
openvas
openvas
CentOS: Security Advisory for qt5-qtimageformats (CESA-2021:2328)
2021-06-15 00:00:00
Huawei EulerOS: Security Advisory for libwebp (EulerOS-SA-2021-2594)
2021-10-26 00:00:00
Huawei EulerOS: Security Advisory for libwebp (EulerOS-SA-2021-2104)
2021-07-07 00:00:00
f5
f5
centos
centos
qt5 security update
2021-06-14 18:46:33
rosalinux
rosalinux
Advisory ROSA-SA-2023-2183
2023-07-11 11:03:27
debian
debian
[SECURITY] [DLA 2677-1] libwebp security update
2021-06-06 18:38:17
[SECURITY] [DSA 4930-1] libwebp security update
2021-06-10 21:04:30
[SECURITY] [DLA 2672-1] libwebp security update
2021-06-05 17:43:33
suse
suse
Security update for libwebp (critical)
2021-07-11 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2021-0244
2021-05-27 00:00:00
Critical Photon OS Security Update - PHSA-2021-3.0-0244
2021-05-28 00:00:00
ubuntu
ubuntu
libwebp vulnerabilities
2021-06-10 00:00:00
libwebp vulnerabilities
2021-06-01 00:00:00
qualysblog
qualysblog
cloudfoundry
cloudfoundry
USN-4971-1: libwebp vulnerabilities | Cloud Foundry
2021-06-11 00:00:00
apple
apple
About the security content of iOS 14.7 and iPadOS 14.7
2021-07-21 00:00:00
About the security content of iOS 14.7 and iPadOS 14.7
2021-07-19 00:00:00
threatpost
threatpost
Apple Issues Urgent iPhone Updates; None for Pegasus Zero-Day
2021-07-22 16:18:25
ibm
ibm