ALT-PU-2016-2508-1
Closed vulnerabilities
No data currently available.
Published: 2017-02-03
Modified: 2025-04-20
Modified: 2025-04-20
CVE-2016-9085
Multiple integer overflows in libwebp allows attackers to have unspecified impact via unknown vectors.
Severity: LOW (2.1)
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P
Severity: LOW (3.3)
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
References:
- http://www.openwall.com/lists/oss-security/2016/10/27/3
- http://www.securityfocus.com/bid/93928
- https://bugzilla.redhat.com/show_bug.cgi?id=1389338
- https://chromium.googlesource.com/webm/libwebp/+/e2affacc35f1df6cc3b1a9fa0ceff5ce2d0cce83
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LG5Q42J7EJDKQKWTTHCO4YZMOMP74YPQ/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PTR2ZW67TMT7KC24RBENIF25KWUJ7VPD/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SH6X3MWD5AHZC5JT4625PGFHAYLR7YW7/
- https://security.gentoo.org/glsa/201701-61
- http://www.openwall.com/lists/oss-security/2016/10/27/3
- http://www.securityfocus.com/bid/93928
- https://bugzilla.redhat.com/show_bug.cgi?id=1389338
- https://chromium.googlesource.com/webm/libwebp/+/e2affacc35f1df6cc3b1a9fa0ceff5ce2d0cce83
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LG5Q42J7EJDKQKWTTHCO4YZMOMP74YPQ/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PTR2ZW67TMT7KC24RBENIF25KWUJ7VPD/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SH6X3MWD5AHZC5JT4625PGFHAYLR7YW7/
- https://security.gentoo.org/glsa/201701-61
Published: 2019-05-23
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2016-9969
In libwebp 0.5.1, there is a double free bug in libwebpmux.
Severity: MEDIUM (5.1)
Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P
Severity: HIGH (7.5)
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
References: