Lucene search
Veracode Vulnerability DatabaseVERACODE:33124HistoryNov 28, 2021 - 12:40 a.m.
Denial Of Service (DoS) Through Memory Consumption
2021-11-2800:40:49
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.004 Low
EPSS
Percentile
75.1%
libwebp is vulnerable to Denial Of Service Through Memory Consumption. The vulnerability is because it allocates excessive memory when reading a file which causes a denial of service.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libwebp | eq | 1.0.0__1.el8 | |
| libwebp | eq | 1.0.0__3.el8_4 | |
| libwebp | eq | 1.0.0__1.el8 | |
| libwebp | eq | 1.0.0__3.el8_4 |
References
access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.5_release_notes/
access.redhat.com/errata/RHSA-2021:4231
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=1956868
security.netapp.com/advisory/ntap-20211104-0004/
www.debian.org/security/2021/dsa-4930
Related
cbl_mariner
cbl_mariner
CVE-2020-36332 affecting package libwebp 1.0.0-4
2021-06-09 03:50:29
nessus
nessus
EulerOS 2.0 SP5 : libwebp (EulerOS-SA-2022-1275)
2022-03-01 00:00:00
EulerOS Virtualization 3.0.2.6 : libwebp (EulerOS-SA-2023-1067)
2023-01-06 00:00:00
EulerOS Virtualization 3.0.2.0 : libwebp (EulerOS-SA-2022-1670)
2022-05-07 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for libwebp (EulerOS-SA-2022-1670)
2022-05-09 00:00:00
Huawei EulerOS: Security Advisory for libwebp (EulerOS-SA-2022-1275)
2022-03-02 00:00:00
Huawei EulerOS: Security Advisory for libwebp (EulerOS-SA-2022-1176)
2022-02-24 00:00:00
prion
prion
Design/Logic Flaw
2021-05-21 17:15:00
cve
cve
CVE-2020-36332
2021-05-21 17:15:08
redhatcve
redhatcve
CVE-2020-36332
2021-05-04 20:22:02
ubuntucve
ubuntucve
CVE-2020-36332
2020-12-31 00:00:00
cvelist
cvelist
CVE-2020-36332
2021-05-21 16:21:29
debiancve
debiancve
CVE-2020-36332
2021-05-21 17:15:08
nvd
nvd
CVE-2020-36332
2021-05-21 17:15:08
osv
osv
CVE-2020-36332
2021-05-21 17:15:08
Moderate: libwebp security update
2021-11-09 08:47:24
Moderate: libwebp security update
2021-11-09 08:47:24
rosalinux
rosalinux
Advisory ROSA-SA-2023-2184
2023-07-11 11:09:54
f5
f5
K14760551 : Multiple libwebp vulnerabilities
2022-03-17 00:00:00
oraclelinux
oraclelinux
libwebp security update
2021-11-16 00:00:00
almalinux
almalinux
Moderate: libwebp security update
2021-11-09 08:47:24
rocky
rocky
libwebp security update
2021-11-09 08:47:24
redhat
redhat
(RHSA-2021:4231) Moderate: libwebp security update
2021-11-09 08:47:24
(RHSA-2021:5129) Moderate: Openshift Logging security and bug update (5.3.1)
2021-12-14 16:46:20
(RHSA-2021:5127) Moderate: Openshift Logging security and bug update (5.2.4)
2021-12-14 16:45:56
suse
suse
Security update for libwebp (critical)
2021-07-11 00:00:00
debian
debian
[SECURITY] [DSA 4930-1] libwebp security update
2021-06-10 21:04:30
ubuntu
ubuntu
libwebp vulnerabilities
2021-06-01 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2021-0244
2021-05-27 00:00:00
Critical Photon OS Security Update - PHSA-2021-3.0-0244
2021-05-28 00:00:00
cloudfoundry
cloudfoundry
USN-4971-1: libwebp vulnerabilities | Cloud Foundry
2021-06-11 00:00:00
ibm
ibm