CVE-2018-25014
9.8CRITICALA use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol().
Publicado: 5/21/2021Actualizado: 11/21/2024
Descripción
A use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol().
Análisis IAImpulsado por IA
Productos Afectados
webmprojectlibwebp
redhatenterprise_linux
7.0
redhatenterprise_linux
8.0
Referencias
- https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=9496Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1956927Issue TrackingPatchThird Party Advisory
- https://chromium.googlesource.com/webm/libwebp/+log/78ad57a36ad69a9c22874b182d49d64125c380f2..907208f97ead639bd52Third Party Advisory
- https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=9496Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1956927Issue TrackingPatchThird Party Advisory
- https://chromium.googlesource.com/webm/libwebp/+log/78ad57a36ad69a9c22874b182d49d64125c380f2..907208f97ead639bd52Third Party Advisory