[CLSA-2023:1696970233] libwebp: Fix of 3 CVEs
Type:
security
Severity:
Critical
Release date:
2023-10-10
Description:
- CVE-2018-25013, CVE-2018-25014: wait for all threads to be done in DecodeRemaining - CVE-2023-1999: fix a double free error
Updated packages:
  • libwebp-1.0.0-5.el8.tuxcare.els2.i686.rpm
    sha:7bde9d2735117a724597a4876c578719009e5360
  • libwebp-1.0.0-5.el8.tuxcare.els2.x86_64.rpm
    sha:537034de3d669e39ed5c5b4796127b1509fa3a1d
  • libwebp-devel-1.0.0-5.el8.tuxcare.els2.i686.rpm
    sha:8994024428f0a7f01eedf9a7f8378cee490820b3
  • libwebp-devel-1.0.0-5.el8.tuxcare.els2.x86_64.rpm
    sha:82c4de6618418da1bcfdf1b53550b67eb8d4c528
  • libwebp-java-1.0.0-5.el8.tuxcare.els2.x86_64.rpm
    sha:daeb7671988dd1ceb3f4db3cb8ac3bed841d1243
  • libwebp-tools-1.0.0-5.el8.tuxcare.els2.x86_64.rpm
    sha:7e505130d1948cd8ae9fd104d89675b83244a6e1
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.