RHSA-2021:2354-01 -- Redhat libwebpID: oval:org.secpod.oval:def:73640 | Date: (C)2021-07-02 (M)2023-06-16 |
Class: PATCH | Family: unix |
The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format . Webmasters, web developers and browser developers can use WebP to compress, archive, and distribute digital images more efficiently. Security Fix: * libwebp: heap-based buffer overflow in PutLE16 * libwebp: heap-based buffer overflow in WebPDecode*Into functions * libwebp: use-after-free in EmitFancyRGB in dec/io_dec.c For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.