Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2020-36330 (GCVE-0-2020-36330)
Vulnerability from cvelistv5 – Published: 2021-05-21 16:19 – Updated: 2024-08-04 17:23
VLAI?
EPSS
Summary
A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.
Severity ?
No CVSS data available.
CWE
Assigner
References
| URL | Tags | ||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T17:23:10.522Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956853"
},
{
"name": "[debian-lts-announce] 20210605 [SECURITY] [DLA 2672-1] libwebp security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00005.html"
},
{
"name": "[debian-lts-announce] 20210606 [SECURITY] [DLA 2677-1] libwebp security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00006.html"
},
{
"name": "DSA-4930",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2021/dsa-4930"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.apple.com/kb/HT212601"
},
{
"name": "20210723 APPLE-SA-2021-07-21-1 iOS 14.7 and iPadOS 14.7",
"tags": [
"mailing-list",
"x_refsource_FULLDISC",
"x_transferred"
],
"url": "http://seclists.org/fulldisclosure/2021/Jul/54"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20211104-0004/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "libwebp",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "libwebp 1.0.1"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-125",
"description": "CWE-125",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-11-04T08:06:20.000Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956853"
},
{
"name": "[debian-lts-announce] 20210605 [SECURITY] [DLA 2672-1] libwebp security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00005.html"
},
{
"name": "[debian-lts-announce] 20210606 [SECURITY] [DLA 2677-1] libwebp security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00006.html"
},
{
"name": "DSA-4930",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2021/dsa-4930"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.apple.com/kb/HT212601"
},
{
"name": "20210723 APPLE-SA-2021-07-21-1 iOS 14.7 and iPadOS 14.7",
"tags": [
"mailing-list",
"x_refsource_FULLDISC"
],
"url": "http://seclists.org/fulldisclosure/2021/Jul/54"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20211104-0004/"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2020-36330",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "libwebp",
"version": {
"version_data": [
{
"version_value": "libwebp 1.0.1"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-125"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1956853",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956853"
},
{
"name": "[debian-lts-announce] 20210605 [SECURITY] [DLA 2672-1] libwebp security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00005.html"
},
{
"name": "[debian-lts-announce] 20210606 [SECURITY] [DLA 2677-1] libwebp security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00006.html"
},
{
"name": "DSA-4930",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2021/dsa-4930"
},
{
"name": "https://support.apple.com/kb/HT212601",
"refsource": "CONFIRM",
"url": "https://support.apple.com/kb/HT212601"
},
{
"name": "20210723 APPLE-SA-2021-07-21-1 iOS 14.7 and iPadOS 14.7",
"refsource": "FULLDISC",
"url": "http://seclists.org/fulldisclosure/2021/Jul/54"
},
{
"name": "https://security.netapp.com/advisory/ntap-20211104-0004/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20211104-0004/"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2020-36330",
"datePublished": "2021-05-21T16:19:44.000Z",
"dateReserved": "2021-05-04T00:00:00.000Z",
"dateUpdated": "2024-08-04T17:23:10.522Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2020-36330\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2021-05-21T17:15:08.353\",\"lastModified\":\"2024-11-21T05:29:18.130\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 un fallo en libwebp en versiones anteriores a 1.0.1.\u0026#xa0;Se encontr\u00f3 una lectura fuera de l\u00edmites en la funci\u00f3n ChunkVerifyAndAssign.\u0026#xa0;La mayor amenaza de esta vulnerabilidad es la confidencialidad de los datos y la disponibilidad del servicio\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H\",\"baseScore\":9.1,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.2}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:N/A:P\",\"baseScore\":6.4,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":4.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:webmproject:libwebp:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.0.1\",\"matchCriteriaId\":\"97062C06-0227-489B-8E3C-B62050B69C41\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4CFF558-3C47-480D-A2F0-BABF26042943\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E7CF3019-975D-40BB-A8A4-894E62BD3797\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"14.7\",\"matchCriteriaId\":\"3B5771AF-0A7B-4CB9-85C1-AE624498D080\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"14.7\",\"matchCriteriaId\":\"D3AF02B7-BF1F-483A-BA47-9B5B92AF1D29\"}]}]}],\"references\":[{\"url\":\"http://seclists.org/fulldisclosure/2021/Jul/54\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1956853\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/06/msg00005.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/06/msg00006.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20211104-0004/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.apple.com/kb/HT212601\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Not Applicable\"]},{\"url\":\"https://www.debian.org/security/2021/dsa-4930\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://seclists.org/fulldisclosure/2021/Jul/54\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1956853\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/06/msg00005.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/06/msg00006.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20211104-0004/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.apple.com/kb/HT212601\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Not Applicable\"]},{\"url\":\"https://www.debian.org/security/2021/dsa-4930\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
SUSE-SU-2021:1860-1
Vulnerability from csaf_suse - Published: 2021-06-04 07:04 - Updated: 2021-06-04 07:04Summary
Security update for libwebp
Severity
Critical
Notes
Title of the patch: Security update for libwebp
Description of the patch: This update for libwebp fixes the following issues:
- CVE-2018-25010: Fixed heap-based buffer overflow in ApplyFilter() (bsc#1185685).
- CVE-2020-36330: Fixed heap-based buffer overflow in ChunkVerifyAndAssign() (bsc#1185691).
- CVE-2020-36332: Fixed extreme memory allocation when reading a file (bsc#1185674).
- CVE-2020-36329: Fixed use-after-free in EmitFancyRGB() (bsc#1185652).
- CVE-2018-25012: Fixed heap-based buffer overflow in GetLE24() (bsc#1185690).
- CVE-2020-36328: Fixed heap-based buffer overflow in WebPDecode*Into functions (bsc#1185688).
- CVE-2018-25013: Fixed heap-based buffer overflow in ShiftBytes() (bsc#1185654).
- CVE-2020-36331: Fixed heap-based buffer overflow in ChunkAssignData() (bsc#1185686).
- CVE-2018-25009: Fixed heap-based buffer overflow in GetLE16() (bsc#1185673).
- CVE-2018-25011: Fixed fail on multiple image chunks (bsc#1186247).
Patchnames: SUSE-2021-1860,SUSE-SLE-Module-Packagehub-Subpackages-15-SP2-2021-1860,SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2021-1860,SUSE-SLE-Product-HPC-15-2021-1860,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-1860,SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-1860,SUSE-SLE-Product-SLES-15-2021-1860,SUSE-SLE-Product-SLES-15-SP1-BCL-2021-1860,SUSE-SLE-Product-SLES-15-SP1-LTSS-2021-1860,SUSE-SLE-Product-SLES_SAP-15-2021-1860,SUSE-SLE-Product-SLES_SAP-15-SP1-2021-1860,SUSE-SLE-Product-SUSE-Manager-Proxy-4.0-2021-1860,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.0-2021-1860,SUSE-SLE-Product-SUSE-Manager-Server-4.0-2021-1860,SUSE-SLE-Product-WE-15-SP2-2021-1860,SUSE-SLE-Product-WE-15-SP3-2021-1860,SUSE-Storage-6-2021-1860
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
9.1 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
9.1 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
9.8 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
9.1 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
9.1 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
9.8 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
9.1 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for libwebp",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for libwebp fixes the following issues:\n\n- CVE-2018-25010: Fixed heap-based buffer overflow in ApplyFilter() (bsc#1185685).\n- CVE-2020-36330: Fixed heap-based buffer overflow in ChunkVerifyAndAssign() (bsc#1185691).\n- CVE-2020-36332: Fixed extreme memory allocation when reading a file (bsc#1185674).\n- CVE-2020-36329: Fixed use-after-free in EmitFancyRGB() (bsc#1185652).\n- CVE-2018-25012: Fixed heap-based buffer overflow in GetLE24() (bsc#1185690).\n- CVE-2020-36328: Fixed heap-based buffer overflow in WebPDecode*Into functions (bsc#1185688).\n- CVE-2018-25013: Fixed heap-based buffer overflow in ShiftBytes() (bsc#1185654).\n- CVE-2020-36331: Fixed heap-based buffer overflow in ChunkAssignData() (bsc#1185686).\n- CVE-2018-25009: Fixed heap-based buffer overflow in GetLE16() (bsc#1185673).\n- CVE-2018-25011: Fixed fail on multiple image chunks (bsc#1186247).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-1860,SUSE-SLE-Module-Packagehub-Subpackages-15-SP2-2021-1860,SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2021-1860,SUSE-SLE-Product-HPC-15-2021-1860,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-1860,SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-1860,SUSE-SLE-Product-SLES-15-2021-1860,SUSE-SLE-Product-SLES-15-SP1-BCL-2021-1860,SUSE-SLE-Product-SLES-15-SP1-LTSS-2021-1860,SUSE-SLE-Product-SLES_SAP-15-2021-1860,SUSE-SLE-Product-SLES_SAP-15-SP1-2021-1860,SUSE-SLE-Product-SUSE-Manager-Proxy-4.0-2021-1860,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.0-2021-1860,SUSE-SLE-Product-SUSE-Manager-Server-4.0-2021-1860,SUSE-SLE-Product-WE-15-SP2-2021-1860,SUSE-SLE-Product-WE-15-SP3-2021-1860,SUSE-Storage-6-2021-1860",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_1860-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:1860-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20211860-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:1860-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-June/008936.html"
},
{
"category": "self",
"summary": "SUSE Bug 1185652",
"url": "https://bugzilla.suse.com/1185652"
},
{
"category": "self",
"summary": "SUSE Bug 1185654",
"url": "https://bugzilla.suse.com/1185654"
},
{
"category": "self",
"summary": "SUSE Bug 1185673",
"url": "https://bugzilla.suse.com/1185673"
},
{
"category": "self",
"summary": "SUSE Bug 1185674",
"url": "https://bugzilla.suse.com/1185674"
},
{
"category": "self",
"summary": "SUSE Bug 1185685",
"url": "https://bugzilla.suse.com/1185685"
},
{
"category": "self",
"summary": "SUSE Bug 1185686",
"url": "https://bugzilla.suse.com/1185686"
},
{
"category": "self",
"summary": "SUSE Bug 1185688",
"url": "https://bugzilla.suse.com/1185688"
},
{
"category": "self",
"summary": "SUSE Bug 1185690",
"url": "https://bugzilla.suse.com/1185690"
},
{
"category": "self",
"summary": "SUSE Bug 1185691",
"url": "https://bugzilla.suse.com/1185691"
},
{
"category": "self",
"summary": "SUSE Bug 1186247",
"url": "https://bugzilla.suse.com/1186247"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-25009 page",
"url": "https://www.suse.com/security/cve/CVE-2018-25009/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-25010 page",
"url": "https://www.suse.com/security/cve/CVE-2018-25010/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-25011 page",
"url": "https://www.suse.com/security/cve/CVE-2018-25011/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-25012 page",
"url": "https://www.suse.com/security/cve/CVE-2018-25012/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-25013 page",
"url": "https://www.suse.com/security/cve/CVE-2018-25013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-36328 page",
"url": "https://www.suse.com/security/cve/CVE-2020-36328/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-36329 page",
"url": "https://www.suse.com/security/cve/CVE-2020-36329/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-36330 page",
"url": "https://www.suse.com/security/cve/CVE-2020-36330/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-36331 page",
"url": "https://www.suse.com/security/cve/CVE-2020-36331/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-36332 page",
"url": "https://www.suse.com/security/cve/CVE-2020-36332/"
}
],
"title": "Security update for libwebp",
"tracking": {
"current_release_date": "2021-06-04T07:04:48Z",
"generator": {
"date": "2021-06-04T07:04:48Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:1860-1",
"initial_release_date": "2021-06-04T07:04:48Z",
"revision_history": [
{
"date": "2021-06-04T07:04:48Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libwebp-devel-0.5.0-3.5.1.aarch64",
"product": {
"name": "libwebp-devel-0.5.0-3.5.1.aarch64",
"product_id": "libwebp-devel-0.5.0-3.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwebp-tools-0.5.0-3.5.1.aarch64",
"product": {
"name": "libwebp-tools-0.5.0-3.5.1.aarch64",
"product_id": "libwebp-tools-0.5.0-3.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwebp6-0.5.0-3.5.1.aarch64",
"product": {
"name": "libwebp6-0.5.0-3.5.1.aarch64",
"product_id": "libwebp6-0.5.0-3.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwebpdecoder2-0.5.0-3.5.1.aarch64",
"product": {
"name": "libwebpdecoder2-0.5.0-3.5.1.aarch64",
"product_id": "libwebpdecoder2-0.5.0-3.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwebpdemux2-0.5.0-3.5.1.aarch64",
"product": {
"name": "libwebpdemux2-0.5.0-3.5.1.aarch64",
"product_id": "libwebpdemux2-0.5.0-3.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwebpextras0-0.5.0-3.5.1.aarch64",
"product": {
"name": "libwebpextras0-0.5.0-3.5.1.aarch64",
"product_id": "libwebpextras0-0.5.0-3.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwebpmux2-0.5.0-3.5.1.aarch64",
"product": {
"name": "libwebpmux2-0.5.0-3.5.1.aarch64",
"product_id": "libwebpmux2-0.5.0-3.5.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp-devel-64bit-0.5.0-3.5.1.aarch64_ilp32",
"product": {
"name": "libwebp-devel-64bit-0.5.0-3.5.1.aarch64_ilp32",
"product_id": "libwebp-devel-64bit-0.5.0-3.5.1.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "libwebp6-64bit-0.5.0-3.5.1.aarch64_ilp32",
"product": {
"name": "libwebp6-64bit-0.5.0-3.5.1.aarch64_ilp32",
"product_id": "libwebp6-64bit-0.5.0-3.5.1.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "libwebpdecoder2-64bit-0.5.0-3.5.1.aarch64_ilp32",
"product": {
"name": "libwebpdecoder2-64bit-0.5.0-3.5.1.aarch64_ilp32",
"product_id": "libwebpdecoder2-64bit-0.5.0-3.5.1.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "libwebpdemux2-64bit-0.5.0-3.5.1.aarch64_ilp32",
"product": {
"name": "libwebpdemux2-64bit-0.5.0-3.5.1.aarch64_ilp32",
"product_id": "libwebpdemux2-64bit-0.5.0-3.5.1.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "libwebpextras0-64bit-0.5.0-3.5.1.aarch64_ilp32",
"product": {
"name": "libwebpextras0-64bit-0.5.0-3.5.1.aarch64_ilp32",
"product_id": "libwebpextras0-64bit-0.5.0-3.5.1.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "libwebpmux2-64bit-0.5.0-3.5.1.aarch64_ilp32",
"product": {
"name": "libwebpmux2-64bit-0.5.0-3.5.1.aarch64_ilp32",
"product_id": "libwebpmux2-64bit-0.5.0-3.5.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp-devel-0.5.0-3.5.1.i586",
"product": {
"name": "libwebp-devel-0.5.0-3.5.1.i586",
"product_id": "libwebp-devel-0.5.0-3.5.1.i586"
}
},
{
"category": "product_version",
"name": "libwebp-tools-0.5.0-3.5.1.i586",
"product": {
"name": "libwebp-tools-0.5.0-3.5.1.i586",
"product_id": "libwebp-tools-0.5.0-3.5.1.i586"
}
},
{
"category": "product_version",
"name": "libwebp6-0.5.0-3.5.1.i586",
"product": {
"name": "libwebp6-0.5.0-3.5.1.i586",
"product_id": "libwebp6-0.5.0-3.5.1.i586"
}
},
{
"category": "product_version",
"name": "libwebpdecoder2-0.5.0-3.5.1.i586",
"product": {
"name": "libwebpdecoder2-0.5.0-3.5.1.i586",
"product_id": "libwebpdecoder2-0.5.0-3.5.1.i586"
}
},
{
"category": "product_version",
"name": "libwebpdemux2-0.5.0-3.5.1.i586",
"product": {
"name": "libwebpdemux2-0.5.0-3.5.1.i586",
"product_id": "libwebpdemux2-0.5.0-3.5.1.i586"
}
},
{
"category": "product_version",
"name": "libwebpextras0-0.5.0-3.5.1.i586",
"product": {
"name": "libwebpextras0-0.5.0-3.5.1.i586",
"product_id": "libwebpextras0-0.5.0-3.5.1.i586"
}
},
{
"category": "product_version",
"name": "libwebpmux2-0.5.0-3.5.1.i586",
"product": {
"name": "libwebpmux2-0.5.0-3.5.1.i586",
"product_id": "libwebpmux2-0.5.0-3.5.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp-devel-0.5.0-3.5.1.ppc64le",
"product": {
"name": "libwebp-devel-0.5.0-3.5.1.ppc64le",
"product_id": "libwebp-devel-0.5.0-3.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwebp-tools-0.5.0-3.5.1.ppc64le",
"product": {
"name": "libwebp-tools-0.5.0-3.5.1.ppc64le",
"product_id": "libwebp-tools-0.5.0-3.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwebp6-0.5.0-3.5.1.ppc64le",
"product": {
"name": "libwebp6-0.5.0-3.5.1.ppc64le",
"product_id": "libwebp6-0.5.0-3.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"product": {
"name": "libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"product_id": "libwebpdecoder2-0.5.0-3.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwebpdemux2-0.5.0-3.5.1.ppc64le",
"product": {
"name": "libwebpdemux2-0.5.0-3.5.1.ppc64le",
"product_id": "libwebpdemux2-0.5.0-3.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwebpextras0-0.5.0-3.5.1.ppc64le",
"product": {
"name": "libwebpextras0-0.5.0-3.5.1.ppc64le",
"product_id": "libwebpextras0-0.5.0-3.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwebpmux2-0.5.0-3.5.1.ppc64le",
"product": {
"name": "libwebpmux2-0.5.0-3.5.1.ppc64le",
"product_id": "libwebpmux2-0.5.0-3.5.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp-devel-0.5.0-3.5.1.s390x",
"product": {
"name": "libwebp-devel-0.5.0-3.5.1.s390x",
"product_id": "libwebp-devel-0.5.0-3.5.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebp-tools-0.5.0-3.5.1.s390x",
"product": {
"name": "libwebp-tools-0.5.0-3.5.1.s390x",
"product_id": "libwebp-tools-0.5.0-3.5.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebp6-0.5.0-3.5.1.s390x",
"product": {
"name": "libwebp6-0.5.0-3.5.1.s390x",
"product_id": "libwebp6-0.5.0-3.5.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebpdecoder2-0.5.0-3.5.1.s390x",
"product": {
"name": "libwebpdecoder2-0.5.0-3.5.1.s390x",
"product_id": "libwebpdecoder2-0.5.0-3.5.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebpdemux2-0.5.0-3.5.1.s390x",
"product": {
"name": "libwebpdemux2-0.5.0-3.5.1.s390x",
"product_id": "libwebpdemux2-0.5.0-3.5.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebpextras0-0.5.0-3.5.1.s390x",
"product": {
"name": "libwebpextras0-0.5.0-3.5.1.s390x",
"product_id": "libwebpextras0-0.5.0-3.5.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebpmux2-0.5.0-3.5.1.s390x",
"product": {
"name": "libwebpmux2-0.5.0-3.5.1.s390x",
"product_id": "libwebpmux2-0.5.0-3.5.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp-devel-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebp-devel-0.5.0-3.5.1.x86_64",
"product_id": "libwebp-devel-0.5.0-3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebp-devel-32bit-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebp-devel-32bit-0.5.0-3.5.1.x86_64",
"product_id": "libwebp-devel-32bit-0.5.0-3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebp-tools-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebp-tools-0.5.0-3.5.1.x86_64",
"product_id": "libwebp-tools-0.5.0-3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebp6-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebp6-0.5.0-3.5.1.x86_64",
"product_id": "libwebp6-0.5.0-3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebp6-32bit-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebp6-32bit-0.5.0-3.5.1.x86_64",
"product_id": "libwebp6-32bit-0.5.0-3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpdecoder2-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebpdecoder2-0.5.0-3.5.1.x86_64",
"product_id": "libwebpdecoder2-0.5.0-3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"product_id": "libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpdemux2-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebpdemux2-0.5.0-3.5.1.x86_64",
"product_id": "libwebpdemux2-0.5.0-3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpdemux2-32bit-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebpdemux2-32bit-0.5.0-3.5.1.x86_64",
"product_id": "libwebpdemux2-32bit-0.5.0-3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpextras0-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebpextras0-0.5.0-3.5.1.x86_64",
"product_id": "libwebpextras0-0.5.0-3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"product_id": "libwebpextras0-32bit-0.5.0-3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpmux2-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebpmux2-0.5.0-3.5.1.x86_64",
"product_id": "libwebpmux2-0.5.0-3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpmux2-32bit-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebpmux2-32bit-0.5.0-3.5.1.x86_64",
"product_id": "libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:packagehub:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:packagehub:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_bcl:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Proxy 4.0",
"product": {
"name": "SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-proxy:4.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Retail Branch Server 4.0",
"product": {
"name": "SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Server 4.0",
"product": {
"name": "SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-server:4.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 15 SP2",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 15 SP3",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 6",
"product": {
"name": "SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-32bit-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp6-32bit-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-32bit-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp6-32bit-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebp6-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebp6-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebp6-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebp6-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebp6-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebp6-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.x86_64 as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.x86_64 as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.x86_64 as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.x86_64 as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.x86_64 as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.x86_64 as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.x86_64 as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.x86_64 as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.x86_64 as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.x86_64 as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.x86_64 as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.x86_64 as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.ppc64le as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.s390x as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.x86_64 as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.ppc64le as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebp6-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.s390x as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebp6-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.x86_64 as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.ppc64le as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.s390x as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.x86_64 as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.ppc64le as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.s390x as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.x86_64 as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.ppc64le as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.s390x as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.x86_64 as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.ppc64le as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.s390x as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.x86_64 as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP2",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP3",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.5.0-3.5.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp-devel-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux2-0.5.0-3.5.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdemux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-25009",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-25009"
}
],
"notes": [
{
"category": "general",
"text": "A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in GetLE16().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-25009",
"url": "https://www.suse.com/security/cve/CVE-2018-25009"
},
{
"category": "external",
"summary": "SUSE Bug 1185673 for CVE-2018-25009",
"url": "https://bugzilla.suse.com/1185673"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-04T07:04:48Z",
"details": "critical"
}
],
"title": "CVE-2018-25009"
},
{
"cve": "CVE-2018-25010",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-25010"
}
],
"notes": [
{
"category": "general",
"text": "A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ApplyFilter().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-25010",
"url": "https://www.suse.com/security/cve/CVE-2018-25010"
},
{
"category": "external",
"summary": "SUSE Bug 1185685 for CVE-2018-25010",
"url": "https://bugzilla.suse.com/1185685"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-04T07:04:48Z",
"details": "critical"
}
],
"title": "CVE-2018-25010"
},
{
"cve": "CVE-2018-25011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-25011"
}
],
"notes": [
{
"category": "general",
"text": "A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in PutLE16().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-25011",
"url": "https://www.suse.com/security/cve/CVE-2018-25011"
},
{
"category": "external",
"summary": "SUSE Bug 1186247 for CVE-2018-25011",
"url": "https://bugzilla.suse.com/1186247"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-04T07:04:48Z",
"details": "critical"
}
],
"title": "CVE-2018-25011"
},
{
"cve": "CVE-2018-25012",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-25012"
}
],
"notes": [
{
"category": "general",
"text": "A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in GetLE24().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-25012",
"url": "https://www.suse.com/security/cve/CVE-2018-25012"
},
{
"category": "external",
"summary": "SUSE Bug 1185690 for CVE-2018-25012",
"url": "https://bugzilla.suse.com/1185690"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-04T07:04:48Z",
"details": "critical"
}
],
"title": "CVE-2018-25012"
},
{
"cve": "CVE-2018-25013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-25013"
}
],
"notes": [
{
"category": "general",
"text": "A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ShiftBytes().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-25013",
"url": "https://www.suse.com/security/cve/CVE-2018-25013"
},
{
"category": "external",
"summary": "SUSE Bug 1185654 for CVE-2018-25013",
"url": "https://bugzilla.suse.com/1185654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-04T07:04:48Z",
"details": "critical"
}
],
"title": "CVE-2018-25013"
},
{
"cve": "CVE-2020-36328",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-36328"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in libwebp in versions before 1.0.1. A heap-based buffer overflow in function WebPDecodeRGBInto is possible due to an invalid check for buffer size. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-36328",
"url": "https://www.suse.com/security/cve/CVE-2020-36328"
},
{
"category": "external",
"summary": "SUSE Bug 1185688 for CVE-2020-36328",
"url": "https://bugzilla.suse.com/1185688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-04T07:04:48Z",
"details": "critical"
}
],
"title": "CVE-2020-36328"
},
{
"cve": "CVE-2020-36329",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-36329"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a thread being killed too early. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-36329",
"url": "https://www.suse.com/security/cve/CVE-2020-36329"
},
{
"category": "external",
"summary": "SUSE Bug 1185652 for CVE-2020-36329",
"url": "https://bugzilla.suse.com/1185652"
},
{
"category": "external",
"summary": "SUSE Bug 1187486 for CVE-2020-36329",
"url": "https://bugzilla.suse.com/1187486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-04T07:04:48Z",
"details": "moderate"
}
],
"title": "CVE-2020-36329"
},
{
"cve": "CVE-2020-36330",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-36330"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-36330",
"url": "https://www.suse.com/security/cve/CVE-2020-36330"
},
{
"category": "external",
"summary": "SUSE Bug 1185691 for CVE-2020-36330",
"url": "https://bugzilla.suse.com/1185691"
},
{
"category": "external",
"summary": "SUSE Bug 1187486 for CVE-2020-36330",
"url": "https://bugzilla.suse.com/1187486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-04T07:04:48Z",
"details": "important"
}
],
"title": "CVE-2020-36330"
},
{
"cve": "CVE-2020-36331",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-36331"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkAssignData. The highest threat from this vulnerability is to data confidentiality and to the service availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-36331",
"url": "https://www.suse.com/security/cve/CVE-2020-36331"
},
{
"category": "external",
"summary": "SUSE Bug 1185686 for CVE-2020-36331",
"url": "https://bugzilla.suse.com/1185686"
},
{
"category": "external",
"summary": "SUSE Bug 1187486 for CVE-2020-36331",
"url": "https://bugzilla.suse.com/1187486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-04T07:04:48Z",
"details": "critical"
}
],
"title": "CVE-2020-36331"
},
{
"cve": "CVE-2020-36332",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-36332"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in libwebp in versions before 1.0.1. When reading a file libwebp allocates an excessive amount of memory. The highest threat from this vulnerability is to the service availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-36332",
"url": "https://www.suse.com/security/cve/CVE-2020-36332"
},
{
"category": "external",
"summary": "SUSE Bug 1185674 for CVE-2020-36332",
"url": "https://bugzilla.suse.com/1185674"
},
{
"category": "external",
"summary": "SUSE Bug 1187486 for CVE-2020-36332",
"url": "https://bugzilla.suse.com/1187486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Enterprise Storage 6:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP2:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Module for Package Hub 15 SP3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP2:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP3:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Proxy 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp-devel-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebp6-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpdemux2-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpextras0-0.5.0-3.5.1.x86_64",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.ppc64le",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.s390x",
"SUSE Manager Server 4.0:libwebpmux2-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-04T07:04:48Z",
"details": "important"
}
],
"title": "CVE-2020-36332"
}
]
}
SUSE-SU-2021:1830-1
Vulnerability from csaf_suse - Published: 2021-06-02 12:23 - Updated: 2021-06-02 12:23Summary
Security update for libwebp
Severity
Critical
Notes
Title of the patch: Security update for libwebp
Description of the patch: This update for libwebp fixes the following issues:
- CVE-2018-25010: Fixed heap-based buffer overflow in ApplyFilter() (bsc#1185685).
- CVE-2020-36330: Fixed heap-based buffer overflow in ChunkVerifyAndAssign() (bsc#1185691).
- CVE-2020-36332: Fixed extreme memory allocation when reading a file (bsc#1185674).
- CVE-2020-36329: Fixed use-after-free in EmitFancyRGB() (bsc#1185652).
- CVE-2018-25012: Fixed heap-based buffer overflow in GetLE24() (bsc#1185690).
- CVE-2018-25013: Fixed heap-based buffer overflow in ShiftBytes() (bsc#1185654).
- CVE-2020-36331: Fixed heap-based buffer overflow in ChunkAssignData() (bsc#1185686).
- CVE-2018-25009: Fixed heap-based buffer overflow in GetLE16() (bsc#1185673).
- CVE-2018-25011: Fixed fail on multiple image chunks (bsc#1186247).
Patchnames: HPE-Helion-OpenStack-8-2021-1830,SUSE-2021-1830,SUSE-OpenStack-Cloud-7-2021-1830,SUSE-OpenStack-Cloud-8-2021-1830,SUSE-OpenStack-Cloud-9-2021-1830,SUSE-OpenStack-Cloud-Crowbar-8-2021-1830,SUSE-OpenStack-Cloud-Crowbar-9-2021-1830,SUSE-SLE-SAP-12-SP3-2021-1830,SUSE-SLE-SAP-12-SP4-2021-1830,SUSE-SLE-SDK-12-SP5-2021-1830,SUSE-SLE-SERVER-12-SP2-BCL-2021-1830,SUSE-SLE-SERVER-12-SP3-2021-1830,SUSE-SLE-SERVER-12-SP3-BCL-2021-1830,SUSE-SLE-SERVER-12-SP4-LTSS-2021-1830,SUSE-SLE-SERVER-12-SP5-2021-1830
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
9.1 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
9.1 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
9.8 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
9.1 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
9.1 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
9.1 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for libwebp",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for libwebp fixes the following issues:\n\n- CVE-2018-25010: Fixed heap-based buffer overflow in ApplyFilter() (bsc#1185685).\n- CVE-2020-36330: Fixed heap-based buffer overflow in ChunkVerifyAndAssign() (bsc#1185691).\n- CVE-2020-36332: Fixed extreme memory allocation when reading a file (bsc#1185674).\n- CVE-2020-36329: Fixed use-after-free in EmitFancyRGB() (bsc#1185652).\n- CVE-2018-25012: Fixed heap-based buffer overflow in GetLE24() (bsc#1185690).\n- CVE-2018-25013: Fixed heap-based buffer overflow in ShiftBytes() (bsc#1185654).\n- CVE-2020-36331: Fixed heap-based buffer overflow in ChunkAssignData() (bsc#1185686).\n- CVE-2018-25009: Fixed heap-based buffer overflow in GetLE16() (bsc#1185673).\n- CVE-2018-25011: Fixed fail on multiple image chunks (bsc#1186247).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "HPE-Helion-OpenStack-8-2021-1830,SUSE-2021-1830,SUSE-OpenStack-Cloud-7-2021-1830,SUSE-OpenStack-Cloud-8-2021-1830,SUSE-OpenStack-Cloud-9-2021-1830,SUSE-OpenStack-Cloud-Crowbar-8-2021-1830,SUSE-OpenStack-Cloud-Crowbar-9-2021-1830,SUSE-SLE-SAP-12-SP3-2021-1830,SUSE-SLE-SAP-12-SP4-2021-1830,SUSE-SLE-SDK-12-SP5-2021-1830,SUSE-SLE-SERVER-12-SP2-BCL-2021-1830,SUSE-SLE-SERVER-12-SP3-2021-1830,SUSE-SLE-SERVER-12-SP3-BCL-2021-1830,SUSE-SLE-SERVER-12-SP4-LTSS-2021-1830,SUSE-SLE-SERVER-12-SP5-2021-1830",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_1830-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:1830-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20211830-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:1830-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-June/008911.html"
},
{
"category": "self",
"summary": "SUSE Bug 1185652",
"url": "https://bugzilla.suse.com/1185652"
},
{
"category": "self",
"summary": "SUSE Bug 1185654",
"url": "https://bugzilla.suse.com/1185654"
},
{
"category": "self",
"summary": "SUSE Bug 1185673",
"url": "https://bugzilla.suse.com/1185673"
},
{
"category": "self",
"summary": "SUSE Bug 1185674",
"url": "https://bugzilla.suse.com/1185674"
},
{
"category": "self",
"summary": "SUSE Bug 1185685",
"url": "https://bugzilla.suse.com/1185685"
},
{
"category": "self",
"summary": "SUSE Bug 1185686",
"url": "https://bugzilla.suse.com/1185686"
},
{
"category": "self",
"summary": "SUSE Bug 1185690",
"url": "https://bugzilla.suse.com/1185690"
},
{
"category": "self",
"summary": "SUSE Bug 1185691",
"url": "https://bugzilla.suse.com/1185691"
},
{
"category": "self",
"summary": "SUSE Bug 1186247",
"url": "https://bugzilla.suse.com/1186247"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-25009 page",
"url": "https://www.suse.com/security/cve/CVE-2018-25009/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-25010 page",
"url": "https://www.suse.com/security/cve/CVE-2018-25010/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-25011 page",
"url": "https://www.suse.com/security/cve/CVE-2018-25011/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-25012 page",
"url": "https://www.suse.com/security/cve/CVE-2018-25012/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-25013 page",
"url": "https://www.suse.com/security/cve/CVE-2018-25013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-36329 page",
"url": "https://www.suse.com/security/cve/CVE-2020-36329/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-36330 page",
"url": "https://www.suse.com/security/cve/CVE-2020-36330/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-36331 page",
"url": "https://www.suse.com/security/cve/CVE-2020-36331/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-36332 page",
"url": "https://www.suse.com/security/cve/CVE-2020-36332/"
}
],
"title": "Security update for libwebp",
"tracking": {
"current_release_date": "2021-06-02T12:23:27Z",
"generator": {
"date": "2021-06-02T12:23:27Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:1830-1",
"initial_release_date": "2021-06-02T12:23:27Z",
"revision_history": [
{
"date": "2021-06-02T12:23:27Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libwebp-devel-0.4.3-4.7.1.aarch64",
"product": {
"name": "libwebp-devel-0.4.3-4.7.1.aarch64",
"product_id": "libwebp-devel-0.4.3-4.7.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwebp-tools-0.4.3-4.7.1.aarch64",
"product": {
"name": "libwebp-tools-0.4.3-4.7.1.aarch64",
"product_id": "libwebp-tools-0.4.3-4.7.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwebp5-0.4.3-4.7.1.aarch64",
"product": {
"name": "libwebp5-0.4.3-4.7.1.aarch64",
"product_id": "libwebp5-0.4.3-4.7.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwebpdecoder1-0.4.3-4.7.1.aarch64",
"product": {
"name": "libwebpdecoder1-0.4.3-4.7.1.aarch64",
"product_id": "libwebpdecoder1-0.4.3-4.7.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwebpdemux1-0.4.3-4.7.1.aarch64",
"product": {
"name": "libwebpdemux1-0.4.3-4.7.1.aarch64",
"product_id": "libwebpdemux1-0.4.3-4.7.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwebpmux1-0.4.3-4.7.1.aarch64",
"product": {
"name": "libwebpmux1-0.4.3-4.7.1.aarch64",
"product_id": "libwebpmux1-0.4.3-4.7.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp5-64bit-0.4.3-4.7.1.aarch64_ilp32",
"product": {
"name": "libwebp5-64bit-0.4.3-4.7.1.aarch64_ilp32",
"product_id": "libwebp5-64bit-0.4.3-4.7.1.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "libwebpdecoder1-64bit-0.4.3-4.7.1.aarch64_ilp32",
"product": {
"name": "libwebpdecoder1-64bit-0.4.3-4.7.1.aarch64_ilp32",
"product_id": "libwebpdecoder1-64bit-0.4.3-4.7.1.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "libwebpdemux1-64bit-0.4.3-4.7.1.aarch64_ilp32",
"product": {
"name": "libwebpdemux1-64bit-0.4.3-4.7.1.aarch64_ilp32",
"product_id": "libwebpdemux1-64bit-0.4.3-4.7.1.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "libwebpmux1-64bit-0.4.3-4.7.1.aarch64_ilp32",
"product": {
"name": "libwebpmux1-64bit-0.4.3-4.7.1.aarch64_ilp32",
"product_id": "libwebpmux1-64bit-0.4.3-4.7.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp-devel-0.4.3-4.7.1.i586",
"product": {
"name": "libwebp-devel-0.4.3-4.7.1.i586",
"product_id": "libwebp-devel-0.4.3-4.7.1.i586"
}
},
{
"category": "product_version",
"name": "libwebp-tools-0.4.3-4.7.1.i586",
"product": {
"name": "libwebp-tools-0.4.3-4.7.1.i586",
"product_id": "libwebp-tools-0.4.3-4.7.1.i586"
}
},
{
"category": "product_version",
"name": "libwebp5-0.4.3-4.7.1.i586",
"product": {
"name": "libwebp5-0.4.3-4.7.1.i586",
"product_id": "libwebp5-0.4.3-4.7.1.i586"
}
},
{
"category": "product_version",
"name": "libwebpdecoder1-0.4.3-4.7.1.i586",
"product": {
"name": "libwebpdecoder1-0.4.3-4.7.1.i586",
"product_id": "libwebpdecoder1-0.4.3-4.7.1.i586"
}
},
{
"category": "product_version",
"name": "libwebpdemux1-0.4.3-4.7.1.i586",
"product": {
"name": "libwebpdemux1-0.4.3-4.7.1.i586",
"product_id": "libwebpdemux1-0.4.3-4.7.1.i586"
}
},
{
"category": "product_version",
"name": "libwebpmux1-0.4.3-4.7.1.i586",
"product": {
"name": "libwebpmux1-0.4.3-4.7.1.i586",
"product_id": "libwebpmux1-0.4.3-4.7.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp-devel-0.4.3-4.7.1.ppc64le",
"product": {
"name": "libwebp-devel-0.4.3-4.7.1.ppc64le",
"product_id": "libwebp-devel-0.4.3-4.7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwebp-tools-0.4.3-4.7.1.ppc64le",
"product": {
"name": "libwebp-tools-0.4.3-4.7.1.ppc64le",
"product_id": "libwebp-tools-0.4.3-4.7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwebp5-0.4.3-4.7.1.ppc64le",
"product": {
"name": "libwebp5-0.4.3-4.7.1.ppc64le",
"product_id": "libwebp5-0.4.3-4.7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"product": {
"name": "libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"product_id": "libwebpdecoder1-0.4.3-4.7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwebpdemux1-0.4.3-4.7.1.ppc64le",
"product": {
"name": "libwebpdemux1-0.4.3-4.7.1.ppc64le",
"product_id": "libwebpdemux1-0.4.3-4.7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwebpmux1-0.4.3-4.7.1.ppc64le",
"product": {
"name": "libwebpmux1-0.4.3-4.7.1.ppc64le",
"product_id": "libwebpmux1-0.4.3-4.7.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp-devel-0.4.3-4.7.1.s390",
"product": {
"name": "libwebp-devel-0.4.3-4.7.1.s390",
"product_id": "libwebp-devel-0.4.3-4.7.1.s390"
}
},
{
"category": "product_version",
"name": "libwebp-tools-0.4.3-4.7.1.s390",
"product": {
"name": "libwebp-tools-0.4.3-4.7.1.s390",
"product_id": "libwebp-tools-0.4.3-4.7.1.s390"
}
},
{
"category": "product_version",
"name": "libwebp5-0.4.3-4.7.1.s390",
"product": {
"name": "libwebp5-0.4.3-4.7.1.s390",
"product_id": "libwebp5-0.4.3-4.7.1.s390"
}
},
{
"category": "product_version",
"name": "libwebpdecoder1-0.4.3-4.7.1.s390",
"product": {
"name": "libwebpdecoder1-0.4.3-4.7.1.s390",
"product_id": "libwebpdecoder1-0.4.3-4.7.1.s390"
}
},
{
"category": "product_version",
"name": "libwebpdemux1-0.4.3-4.7.1.s390",
"product": {
"name": "libwebpdemux1-0.4.3-4.7.1.s390",
"product_id": "libwebpdemux1-0.4.3-4.7.1.s390"
}
},
{
"category": "product_version",
"name": "libwebpmux1-0.4.3-4.7.1.s390",
"product": {
"name": "libwebpmux1-0.4.3-4.7.1.s390",
"product_id": "libwebpmux1-0.4.3-4.7.1.s390"
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp-devel-0.4.3-4.7.1.s390x",
"product": {
"name": "libwebp-devel-0.4.3-4.7.1.s390x",
"product_id": "libwebp-devel-0.4.3-4.7.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebp-tools-0.4.3-4.7.1.s390x",
"product": {
"name": "libwebp-tools-0.4.3-4.7.1.s390x",
"product_id": "libwebp-tools-0.4.3-4.7.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebp5-0.4.3-4.7.1.s390x",
"product": {
"name": "libwebp5-0.4.3-4.7.1.s390x",
"product_id": "libwebp5-0.4.3-4.7.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebp5-32bit-0.4.3-4.7.1.s390x",
"product": {
"name": "libwebp5-32bit-0.4.3-4.7.1.s390x",
"product_id": "libwebp5-32bit-0.4.3-4.7.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebpdecoder1-0.4.3-4.7.1.s390x",
"product": {
"name": "libwebpdecoder1-0.4.3-4.7.1.s390x",
"product_id": "libwebpdecoder1-0.4.3-4.7.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebpdecoder1-32bit-0.4.3-4.7.1.s390x",
"product": {
"name": "libwebpdecoder1-32bit-0.4.3-4.7.1.s390x",
"product_id": "libwebpdecoder1-32bit-0.4.3-4.7.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebpdemux1-0.4.3-4.7.1.s390x",
"product": {
"name": "libwebpdemux1-0.4.3-4.7.1.s390x",
"product_id": "libwebpdemux1-0.4.3-4.7.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebpdemux1-32bit-0.4.3-4.7.1.s390x",
"product": {
"name": "libwebpdemux1-32bit-0.4.3-4.7.1.s390x",
"product_id": "libwebpdemux1-32bit-0.4.3-4.7.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebpmux1-0.4.3-4.7.1.s390x",
"product": {
"name": "libwebpmux1-0.4.3-4.7.1.s390x",
"product_id": "libwebpmux1-0.4.3-4.7.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebpmux1-32bit-0.4.3-4.7.1.s390x",
"product": {
"name": "libwebpmux1-32bit-0.4.3-4.7.1.s390x",
"product_id": "libwebpmux1-32bit-0.4.3-4.7.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp5-0.4.3-4.7.1.x86_64",
"product": {
"name": "libwebp5-0.4.3-4.7.1.x86_64",
"product_id": "libwebp5-0.4.3-4.7.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebp5-32bit-0.4.3-4.7.1.x86_64",
"product": {
"name": "libwebp5-32bit-0.4.3-4.7.1.x86_64",
"product_id": "libwebp5-32bit-0.4.3-4.7.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpdemux1-0.4.3-4.7.1.x86_64",
"product": {
"name": "libwebpdemux1-0.4.3-4.7.1.x86_64",
"product_id": "libwebpdemux1-0.4.3-4.7.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpmux1-0.4.3-4.7.1.x86_64",
"product": {
"name": "libwebpmux1-0.4.3-4.7.1.x86_64",
"product_id": "libwebpmux1-0.4.3-4.7.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebp-devel-0.4.3-4.7.1.x86_64",
"product": {
"name": "libwebp-devel-0.4.3-4.7.1.x86_64",
"product_id": "libwebp-devel-0.4.3-4.7.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebp-tools-0.4.3-4.7.1.x86_64",
"product": {
"name": "libwebp-tools-0.4.3-4.7.1.x86_64",
"product_id": "libwebp-tools-0.4.3-4.7.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpdecoder1-0.4.3-4.7.1.x86_64",
"product": {
"name": "libwebpdecoder1-0.4.3-4.7.1.x86_64",
"product_id": "libwebpdecoder1-0.4.3-4.7.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpdecoder1-32bit-0.4.3-4.7.1.x86_64",
"product": {
"name": "libwebpdecoder1-32bit-0.4.3-4.7.1.x86_64",
"product_id": "libwebpdecoder1-32bit-0.4.3-4.7.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpdemux1-32bit-0.4.3-4.7.1.x86_64",
"product": {
"name": "libwebpdemux1-32bit-0.4.3-4.7.1.x86_64",
"product_id": "libwebpdemux1-32bit-0.4.3-4.7.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpmux1-32bit-0.4.3-4.7.1.x86_64",
"product": {
"name": "libwebpmux1-32bit-0.4.3-4.7.1.x86_64",
"product_id": "libwebpmux1-32bit-0.4.3-4.7.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "HPE Helion OpenStack 8",
"product": {
"name": "HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:hpe-helion-openstack:8"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 7",
"product": {
"name": "SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:7"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 8",
"product": {
"name": "SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:8"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 9",
"product": {
"name": "SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:9"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud Crowbar 8",
"product": {
"name": "SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:8"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud Crowbar 9",
"product": {
"name": "SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:9"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-32bit-0.4.3-4.7.1.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-32bit-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux1-0.4.3-4.7.1.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpmux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux1-0.4.3-4.7.1.aarch64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64"
},
"product_reference": "libwebpmux1-0.4.3-4.7.1.aarch64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux1-0.4.3-4.7.1.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x"
},
"product_reference": "libwebpmux1-0.4.3-4.7.1.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux1-0.4.3-4.7.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpmux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-32bit-0.4.3-4.7.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-32bit-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux1-0.4.3-4.7.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpmux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-32bit-0.4.3-4.7.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-32bit-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux1-0.4.3-4.7.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpmux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-32bit-0.4.3-4.7.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-32bit-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux1-0.4.3-4.7.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpmux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-32bit-0.4.3-4.7.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-32bit-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux1-0.4.3-4.7.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpmux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le"
},
"product_reference": "libwebp5-0.4.3-4.7.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-32bit-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-32bit-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le"
},
"product_reference": "libwebp5-0.4.3-4.7.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-32bit-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-32bit-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.4.3-4.7.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64"
},
"product_reference": "libwebp-devel-0.4.3-4.7.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.4.3-4.7.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le"
},
"product_reference": "libwebp-devel-0.4.3-4.7.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.4.3-4.7.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x"
},
"product_reference": "libwebp-devel-0.4.3-4.7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp-devel-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder1-0.4.3-4.7.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64"
},
"product_reference": "libwebpdecoder1-0.4.3-4.7.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder1-0.4.3-4.7.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le"
},
"product_reference": "libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder1-0.4.3-4.7.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x"
},
"product_reference": "libwebpdecoder1-0.4.3-4.7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder1-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpdecoder1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux1-0.4.3-4.7.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64"
},
"product_reference": "libwebpmux1-0.4.3-4.7.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux1-0.4.3-4.7.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le"
},
"product_reference": "libwebpmux1-0.4.3-4.7.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux1-0.4.3-4.7.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x"
},
"product_reference": "libwebpmux1-0.4.3-4.7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux1-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpmux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-32bit-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-32bit-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64"
},
"product_reference": "libwebp5-0.4.3-4.7.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le"
},
"product_reference": "libwebp5-0.4.3-4.7.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x"
},
"product_reference": "libwebp5-0.4.3-4.7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-32bit-0.4.3-4.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x"
},
"product_reference": "libwebp5-32bit-0.4.3-4.7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-32bit-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-32bit-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-32bit-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-32bit-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64"
},
"product_reference": "libwebp5-0.4.3-4.7.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le"
},
"product_reference": "libwebp5-0.4.3-4.7.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x"
},
"product_reference": "libwebp5-0.4.3-4.7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-32bit-0.4.3-4.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x"
},
"product_reference": "libwebp5-32bit-0.4.3-4.7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-32bit-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-32bit-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64"
},
"product_reference": "libwebp5-0.4.3-4.7.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le"
},
"product_reference": "libwebp5-0.4.3-4.7.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x"
},
"product_reference": "libwebp5-0.4.3-4.7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-32bit-0.4.3-4.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x"
},
"product_reference": "libwebp5-32bit-0.4.3-4.7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-32bit-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-32bit-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64"
},
"product_reference": "libwebp5-0.4.3-4.7.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le"
},
"product_reference": "libwebp5-0.4.3-4.7.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x"
},
"product_reference": "libwebp5-0.4.3-4.7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-32bit-0.4.3-4.7.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x"
},
"product_reference": "libwebp5-32bit-0.4.3-4.7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp5-32bit-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebp5-32bit-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdemux1-0.4.3-4.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64"
},
"product_reference": "libwebpdemux1-0.4.3-4.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-25009",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-25009"
}
],
"notes": [
{
"category": "general",
"text": "A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in GetLE16().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-25009",
"url": "https://www.suse.com/security/cve/CVE-2018-25009"
},
{
"category": "external",
"summary": "SUSE Bug 1185673 for CVE-2018-25009",
"url": "https://bugzilla.suse.com/1185673"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-02T12:23:27Z",
"details": "critical"
}
],
"title": "CVE-2018-25009"
},
{
"cve": "CVE-2018-25010",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-25010"
}
],
"notes": [
{
"category": "general",
"text": "A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ApplyFilter().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-25010",
"url": "https://www.suse.com/security/cve/CVE-2018-25010"
},
{
"category": "external",
"summary": "SUSE Bug 1185685 for CVE-2018-25010",
"url": "https://bugzilla.suse.com/1185685"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-02T12:23:27Z",
"details": "critical"
}
],
"title": "CVE-2018-25010"
},
{
"cve": "CVE-2018-25011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-25011"
}
],
"notes": [
{
"category": "general",
"text": "A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in PutLE16().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-25011",
"url": "https://www.suse.com/security/cve/CVE-2018-25011"
},
{
"category": "external",
"summary": "SUSE Bug 1186247 for CVE-2018-25011",
"url": "https://bugzilla.suse.com/1186247"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-02T12:23:27Z",
"details": "critical"
}
],
"title": "CVE-2018-25011"
},
{
"cve": "CVE-2018-25012",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-25012"
}
],
"notes": [
{
"category": "general",
"text": "A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in GetLE24().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-25012",
"url": "https://www.suse.com/security/cve/CVE-2018-25012"
},
{
"category": "external",
"summary": "SUSE Bug 1185690 for CVE-2018-25012",
"url": "https://bugzilla.suse.com/1185690"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-02T12:23:27Z",
"details": "critical"
}
],
"title": "CVE-2018-25012"
},
{
"cve": "CVE-2018-25013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-25013"
}
],
"notes": [
{
"category": "general",
"text": "A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ShiftBytes().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-25013",
"url": "https://www.suse.com/security/cve/CVE-2018-25013"
},
{
"category": "external",
"summary": "SUSE Bug 1185654 for CVE-2018-25013",
"url": "https://bugzilla.suse.com/1185654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-02T12:23:27Z",
"details": "critical"
}
],
"title": "CVE-2018-25013"
},
{
"cve": "CVE-2020-36329",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-36329"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a thread being killed too early. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-36329",
"url": "https://www.suse.com/security/cve/CVE-2020-36329"
},
{
"category": "external",
"summary": "SUSE Bug 1185652 for CVE-2020-36329",
"url": "https://bugzilla.suse.com/1185652"
},
{
"category": "external",
"summary": "SUSE Bug 1187486 for CVE-2020-36329",
"url": "https://bugzilla.suse.com/1187486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-02T12:23:27Z",
"details": "moderate"
}
],
"title": "CVE-2020-36329"
},
{
"cve": "CVE-2020-36330",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-36330"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-36330",
"url": "https://www.suse.com/security/cve/CVE-2020-36330"
},
{
"category": "external",
"summary": "SUSE Bug 1185691 for CVE-2020-36330",
"url": "https://bugzilla.suse.com/1185691"
},
{
"category": "external",
"summary": "SUSE Bug 1187486 for CVE-2020-36330",
"url": "https://bugzilla.suse.com/1187486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-02T12:23:27Z",
"details": "important"
}
],
"title": "CVE-2020-36330"
},
{
"cve": "CVE-2020-36331",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-36331"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkAssignData. The highest threat from this vulnerability is to data confidentiality and to the service availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-36331",
"url": "https://www.suse.com/security/cve/CVE-2020-36331"
},
{
"category": "external",
"summary": "SUSE Bug 1185686 for CVE-2020-36331",
"url": "https://bugzilla.suse.com/1185686"
},
{
"category": "external",
"summary": "SUSE Bug 1187486 for CVE-2020-36331",
"url": "https://bugzilla.suse.com/1187486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-02T12:23:27Z",
"details": "critical"
}
],
"title": "CVE-2020-36331"
},
{
"cve": "CVE-2020-36332",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-36332"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in libwebp in versions before 1.0.1. When reading a file libwebp allocates an excessive amount of memory. The highest threat from this vulnerability is to the service availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-36332",
"url": "https://www.suse.com/security/cve/CVE-2020-36332"
},
{
"category": "external",
"summary": "SUSE Bug 1185674 for CVE-2020-36332",
"url": "https://bugzilla.suse.com/1185674"
},
{
"category": "external",
"summary": "SUSE Bug 1187486 for CVE-2020-36332",
"url": "https://bugzilla.suse.com/1187486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:libwebp5-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"HPE Helion OpenStack 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebp-devel-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpdecoder1-0.4.3-4.7.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.aarch64",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.s390x",
"SUSE OpenStack Cloud 7:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud 9:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libwebpmux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebp5-32bit-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpdemux1-0.4.3-4.7.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:libwebpmux1-0.4.3-4.7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-02T12:23:27Z",
"details": "important"
}
],
"title": "CVE-2020-36332"
}
]
}
CNVD-2021-37654
Vulnerability from cnvd - Published: 2021-05-28
VLAI Severity ?
Title
Libwebp越界读取漏洞(CNVD-2021-37654)
Description
Libwebp是一个WebP图像格式的编码和解码库。
Libwebp 1.0.1之前版本存在越界读取漏洞。攻击者可利用漏洞威胁数据机密性和服务可用性。
Severity
中
Patch Name
Libwebp越界读取漏洞(CNVD-2021-37654)的补丁
Patch Description
Libwebp是一个WebP图像格式的编码和解码库。
Libwebp 1.0.1之前版本存在越界读取漏洞。攻击者可利用漏洞威胁数据机密性和服务可用性。 目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
厂商已发布了漏洞修复程序,请及时关注更新: https://chromium.googlesource.com/webm/libwebp/+/2c70ad76c94db5427d37ab4b85dc89b94dd75e01
Reference
https://nvd.nist.gov/vuln/detail/CVE-2020-36330
Impacted products
| Name | Libwebp Libwebp <1.0.1 |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2020-36330",
"cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2020-36330"
}
},
"description": "Libwebp\u662f\u4e00\u4e2aWebP\u56fe\u50cf\u683c\u5f0f\u7684\u7f16\u7801\u548c\u89e3\u7801\u5e93\u3002\n\nLibwebp 1.0.1\u4e4b\u524d\u7248\u672c\u5b58\u5728\u8d8a\u754c\u8bfb\u53d6\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u5a01\u80c1\u6570\u636e\u673a\u5bc6\u6027\u548c\u670d\u52a1\u53ef\u7528\u6027\u3002",
"formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://chromium.googlesource.com/webm/libwebp/+/2c70ad76c94db5427d37ab4b85dc89b94dd75e01",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2021-37654",
"openTime": "2021-05-28",
"patchDescription": "Libwebp\u662f\u4e00\u4e2aWebP\u56fe\u50cf\u683c\u5f0f\u7684\u7f16\u7801\u548c\u89e3\u7801\u5e93\u3002\r\n\r\nLibwebp 1.0.1\u4e4b\u524d\u7248\u672c\u5b58\u5728\u8d8a\u754c\u8bfb\u53d6\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u5a01\u80c1\u6570\u636e\u673a\u5bc6\u6027\u548c\u670d\u52a1\u53ef\u7528\u6027\u3002 \u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Libwebp\u8d8a\u754c\u8bfb\u53d6\u6f0f\u6d1e\uff08CNVD-2021-37654\uff09\u7684\u8865\u4e01",
"products": {
"product": "Libwebp Libwebp \u003c1.0.1"
},
"referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2020-36330",
"serverity": "\u4e2d",
"submitTime": "2021-05-24",
"title": "Libwebp\u8d8a\u754c\u8bfb\u53d6\u6f0f\u6d1e\uff08CNVD-2021-37654\uff09"
}
GHSA-478J-8HP8-FJPW
Vulnerability from github – Published: 2022-05-24 19:02 – Updated: 2022-05-24 19:02
VLAI?
Details
A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.
{
"affected": [],
"aliases": [
"CVE-2020-36330"
],
"database_specific": {
"cwe_ids": [
"CWE-125"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2021-05-21T17:15:00Z",
"severity": "CRITICAL"
},
"details": "A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.",
"id": "GHSA-478j-8hp8-fjpw",
"modified": "2022-05-24T19:02:57Z",
"published": "2022-05-24T19:02:57Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-36330"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956853"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00005.html"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00006.html"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20211104-0004"
},
{
"type": "WEB",
"url": "https://support.apple.com/kb/HT212601"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2021/dsa-4930"
},
{
"type": "WEB",
"url": "http://seclists.org/fulldisclosure/2021/Jul/54"
}
],
"schema_version": "1.4.0",
"severity": []
}
BDU:2021-03104
Vulnerability from fstec - Published: 07.06.2021
VLAI Severity ?
Title
Уязвимость библиотеки libwebp для кодирования и декодирования изображений в формате WebP, связанная с чтением за границами буфера в памяти, позволяющая нарушителю получить доступ к конфиденциальной информации
Description
Уязвимость библиотеки libwebp для кодирования и декодирования изображений в формате WebP связана с чтением за границами буфера в памяти. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, получить доступ к конфиденциальной информации путем создания специально сформированного файла
Severity ?
Vendor
ООО «РусБИТех-Астра», ООО «Ред Софт», Google Inc, АО «НТЦ ИТ РОСА», АО "НППКТ", АО «Концерн ВНИИНС»
Software Name
Astra Linux Special Edition (запись в едином реестре российских программ №369), РЕД ОС (запись в едином реестре российских программ №3751), Astra Linux Special Edition для «Эльбрус» (запись в едином реестре российских программ №11156), libwebp, ROSA Virtualization (запись в едином реестре российских программ №5091), ОСОН ОСнова Оnyx (запись в едином реестре российских программ №5913), ОС ОН «Стрелец» (запись в едином реестре российских программ №6177), ROSA Virtualization 3.0 (запись в едином реестре российских программ №21308)
Software Version
1.6 «Смоленск» (Astra Linux Special Edition), 7.2 Муром (РЕД ОС), 8.1 «Ленинград» (Astra Linux Special Edition для «Эльбрус»), от 0.1.2 до 1.0.1 rc2 (libwebp), 1.7 (Astra Linux Special Edition), 4.7 (Astra Linux Special Edition), 2.1 (ROSA Virtualization), до 2.8 (ОСОН ОСнова Оnyx), до 16.01.2023 (ОС ОН «Стрелец»), 3.0 (ROSA Virtualization 3.0)
Possible Mitigations
Использование рекомендаций:
Для РедОС:
http://repo.red-soft.ru/redos/7.2c/x86_64/updates/
Для libwebp:
https://chromium.googlesource.com/webm/libwebp/+/2c70ad76c94db5427d37ab4b85dc89b94dd75e01
Для ОС Astra Linux:
использование рекомендаций производителя:
https://wiki.astralinux.ru/astra-linux-se16-bulletin-20211008SE16
https://wiki.astralinux.ru/astra-linux-se17-bulletin-2021-1126SE17
https://wiki.astralinux.ru/astra-linux-se47-bulletin-2022-0114SE47
Для системы управления средой виртуализации «ROSA Virtualization»:
https://abf.rosalinux.ru/advisories/ROSA-SA-2023-2184
Для ОСОН ОСнова Оnyx:
Обновление программного обеспечения libwebp до версии 0.6.1+repack-2+deb10u2.osnova1
Для Astra Linux Special Edition для «Эльбрус» 8.1 «Ленинград»:
обновить пакет libwebp до 0.6.1-2+deb10u3 или более высокой версии, используя рекомендации производителя: https://wiki.astralinux.ru/astra-linux-se81-bulletin-20230315SE81
Для ОС ОН «Стрелец»:
Обновление программного обеспечения libwebp до версии 0.5.2-1+deb9u1
Для программной системы управления средой виртуализации с подсистемой безагентного резервного копирования виртуальных машин «ROSA Virtualization 3.0»: https://abf.rosa.ru/advisories/ROSA-SA-2025-2684
Reference
http://repo.red-soft.ru/redos/7.2c/x86_64/updates/
https://www.cybersecurity-help.cz/vdb/SB2021060725
https://www.securitylab.ru/vulnerability/520950.php
https://chromium.googlesource.com/webm/libwebp/+/2c70ad76c94db5427d37ab4b85dc89b94dd75e01
https://wiki.astralinux.ru/astra-linux-se16-bulletin-20211008SE16
https://wiki.astralinux.ru/astra-linux-se17-bulletin-2021-1126SE17
https://wiki.astralinux.ru/astra-linux-se47-bulletin-2022-0114SE47
https://abf.rosalinux.ru/advisories/ROSA-SA-2023-2184
https://поддержка.нппкт.рф/bin/view/ОСнова/Обновления/2.8/
https://wiki.astralinux.ru/astra-linux-se81-bulletin-20230315SE81
https://strelets.net/patchi-i-obnovleniya-bezopasnosti#16012023
https://abf.rosa.ru/advisories/ROSA-SA-2025-2684
CWE
CWE-125
{
"CVSS 2.0": "AV:N/AC:H/Au:N/C:P/I:N/A:P",
"CVSS 3.0": "AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:L",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "\u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb, \u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb, Google Inc, \u0410\u041e \u00ab\u041d\u0422\u0426 \u0418\u0422 \u0420\u041e\u0421\u0410\u00bb, \u0410\u041e \"\u041d\u041f\u041f\u041a\u0422\", \u0410\u041e \u00ab\u041a\u043e\u043d\u0446\u0435\u0440\u043d \u0412\u041d\u0418\u0418\u041d\u0421\u00bb",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "1.6 \u00ab\u0421\u043c\u043e\u043b\u0435\u043d\u0441\u043a\u00bb (Astra Linux Special Edition), 7.2 \u041c\u0443\u0440\u043e\u043c (\u0420\u0415\u0414 \u041e\u0421), 8.1 \u00ab\u041b\u0435\u043d\u0438\u043d\u0433\u0440\u0430\u0434\u00bb (Astra Linux Special Edition \u0434\u043b\u044f \u00ab\u042d\u043b\u044c\u0431\u0440\u0443\u0441\u00bb), \u043e\u0442 0.1.2 \u0434\u043e 1.0.1 rc2 (libwebp), 1.7 (Astra Linux Special Edition), 4.7 (Astra Linux Special Edition), 2.1 (ROSA Virtualization), \u0434\u043e 2.8 (\u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx), \u0434\u043e 16.01.2023 (\u041e\u0421 \u041e\u041d \u00ab\u0421\u0442\u0440\u0435\u043b\u0435\u0446\u00bb), 3.0 (ROSA Virtualization 3.0)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\u0414\u043b\u044f \u0420\u0435\u0434\u041e\u0421:\nhttp://repo.red-soft.ru/redos/7.2c/x86_64/updates/\n\n\u0414\u043b\u044f libwebp:\nhttps://chromium.googlesource.com/webm/libwebp/+/2c70ad76c94db5427d37ab4b85dc89b94dd75e01\n\n\u0414\u043b\u044f \u041e\u0421 Astra Linux:\n\u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://wiki.astralinux.ru/astra-linux-se16-bulletin-20211008SE16\nhttps://wiki.astralinux.ru/astra-linux-se17-bulletin-2021-1126SE17\nhttps://wiki.astralinux.ru/astra-linux-se47-bulletin-2022-0114SE47\n\n\u0414\u043b\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u0440\u0435\u0434\u043e\u0439 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u00abROSA Virtualization\u00bb: \nhttps://abf.rosalinux.ru/advisories/ROSA-SA-2023-2184\n\n\u0414\u043b\u044f \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx:\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f libwebp \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 0.6.1+repack-2+deb10u2.osnova1\n\n\u0414\u043b\u044f Astra Linux Special Edition \u0434\u043b\u044f \u00ab\u042d\u043b\u044c\u0431\u0440\u0443\u0441\u00bb 8.1 \u00ab\u041b\u0435\u043d\u0438\u043d\u0433\u0440\u0430\u0434\u00bb:\n\u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0430\u043a\u0435\u0442 libwebp \u0434\u043e 0.6.1-2+deb10u3 \u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0438, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://wiki.astralinux.ru/astra-linux-se81-bulletin-20230315SE81\n\n\u0414\u043b\u044f \u041e\u0421 \u041e\u041d \u00ab\u0421\u0442\u0440\u0435\u043b\u0435\u0446\u00bb:\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f libwebp \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 0.5.2-1+deb9u1\n\n\u0414\u043b\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u0440\u0435\u0434\u043e\u0439 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u0441 \u043f\u043e\u0434\u0441\u0438\u0441\u0442\u0435\u043c\u043e\u0439 \u0431\u0435\u0437\u0430\u0433\u0435\u043d\u0442\u043d\u043e\u0433\u043e \u0440\u0435\u0437\u0435\u0440\u0432\u043d\u043e\u0433\u043e \u043a\u043e\u043f\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u044b\u0445 \u043c\u0430\u0448\u0438\u043d \u00abROSA Virtualization 3.0\u00bb: https://abf.rosa.ru/advisories/ROSA-SA-2025-2684",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "07.06.2021",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "19.03.2025",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "18.06.2021",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2021-03104",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2020-36330",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Astra Linux Special Edition (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), \u0420\u0415\u0414 \u041e\u0421 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), Astra Linux Special Edition \u0434\u043b\u044f \u00ab\u042d\u043b\u044c\u0431\u0440\u0443\u0441\u00bb (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u211611156), libwebp, ROSA Virtualization (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165091), \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165913), \u041e\u0421 \u041e\u041d \u00ab\u0421\u0442\u0440\u0435\u043b\u0435\u0446\u00bb (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21166177), ROSA Virtualization 3.0 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u211621308)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "\u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 1.6 \u00ab\u0421\u043c\u043e\u043b\u0435\u043d\u0441\u043a\u00bb (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), \u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb \u0420\u0415\u0414 \u041e\u0421 7.2 \u041c\u0443\u0440\u043e\u043c (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition \u0434\u043b\u044f \u00ab\u042d\u043b\u044c\u0431\u0440\u0443\u0441\u00bb 8.1 \u00ab\u041b\u0435\u043d\u0438\u043d\u0433\u0440\u0430\u0434\u00bb (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u211611156), \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 1.7 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 4.7 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), \u0410\u041e \u00ab\u041d\u0422\u0426 \u0418\u0422 \u0420\u041e\u0421\u0410\u00bb ROSA Virtualization 2.1 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165091), \u0410\u041e \"\u041d\u041f\u041f\u041a\u0422\" \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx \u0434\u043e 2.8 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165913), \u0410\u041e \u00ab\u041a\u043e\u043d\u0446\u0435\u0440\u043d \u0412\u041d\u0418\u0418\u041d\u0421\u00bb \u041e\u0421 \u041e\u041d \u00ab\u0421\u0442\u0440\u0435\u043b\u0435\u0446\u00bb \u0434\u043e 16.01.2023 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21166177), \u0410\u041e \u00ab\u041d\u0422\u0426 \u0418\u0422 \u0420\u041e\u0421\u0410\u00bb ROSA Virtualization 3.0 3.0 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u211621308)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a\u0438 libwebp \u0434\u043b\u044f \u043a\u043e\u0434\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0438 \u0434\u0435\u043a\u043e\u0434\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u0439 \u0432 \u0444\u043e\u0440\u043c\u0430\u0442\u0435 WebP, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u0447\u0442\u0435\u043d\u0438\u0435\u043c \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u0430\u043c\u0438 \u0431\u0443\u0444\u0435\u0440\u0430 \u0432 \u043f\u0430\u043c\u044f\u0442\u0438, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u0427\u0442\u0435\u043d\u0438\u0435 \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u0430\u043c\u0438 \u0431\u0443\u0444\u0435\u0440\u0430 (CWE-125)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a\u0438 libwebp \u0434\u043b\u044f \u043a\u043e\u0434\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0438 \u0434\u0435\u043a\u043e\u0434\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u0439 \u0432 \u0444\u043e\u0440\u043c\u0430\u0442\u0435 WebP \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0447\u0442\u0435\u043d\u0438\u0435\u043c \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u0430\u043c\u0438 \u0431\u0443\u0444\u0435\u0440\u0430 \u0432 \u043f\u0430\u043c\u044f\u0442\u0438. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u043f\u0443\u0442\u0435\u043c \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u044f \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u0444\u0430\u0439\u043b\u0430",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u0445",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "http://repo.red-soft.ru/redos/7.2c/x86_64/updates/\nhttps://www.cybersecurity-help.cz/vdb/SB2021060725\nhttps://www.securitylab.ru/vulnerability/520950.php\nhttps://chromium.googlesource.com/webm/libwebp/+/2c70ad76c94db5427d37ab4b85dc89b94dd75e01\nhttps://wiki.astralinux.ru/astra-linux-se16-bulletin-20211008SE16\nhttps://wiki.astralinux.ru/astra-linux-se17-bulletin-2021-1126SE17\nhttps://wiki.astralinux.ru/astra-linux-se47-bulletin-2022-0114SE47\nhttps://abf.rosalinux.ru/advisories/ROSA-SA-2023-2184\nhttps://\u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0430.\u043d\u043f\u043f\u043a\u0442.\u0440\u0444/bin/view/\u041e\u0421\u043d\u043e\u0432\u0430/\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f/2.8/\nhttps://wiki.astralinux.ru/astra-linux-se81-bulletin-20230315SE81\nhttps://strelets.net/patchi-i-obnovleniya-bezopasnosti#16012023\nhttps://abf.rosa.ru/advisories/ROSA-SA-2025-2684",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-125",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 4)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 4,2)"
}
VAR-202105-1457
Vulnerability from variot - Updated: 2026-03-09 21:09A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability. libwebp Is vulnerable to an out-of-bounds read.Information is obtained and denial of service (DoS) It may be put into a state. Bugs fixed (https://bugzilla.redhat.com/):
1944888 - CVE-2021-21409 netty: Request smuggling via content-length header 2004133 - CVE-2021-37136 netty-codec: Bzip2Decoder doesn't allow setting size restrictions for decompressed data 2004135 - CVE-2021-37137 netty-codec: SnappyFrameDecoder doesn't restrict chunk length and may buffer skippable chunks in an unnecessary way 2030932 - CVE-2021-44228 log4j-core: Remote code execution in Log4j 2.x when logs contain an attacker-controlled string value
- JIRA issues fixed (https://issues.jboss.org/):
LOG-1971 - Applying cluster state is causing elasticsearch to hit an issue and become unusable
- -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256
====================================================================
Red Hat Security Advisory
Synopsis: Moderate: libwebp security update Advisory ID: RHSA-2021:4231-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:4231 Issue date: 2021-11-09 CVE Names: CVE-2018-25009 CVE-2018-25010 CVE-2018-25012 CVE-2018-25013 CVE-2018-25014 CVE-2020-36330 CVE-2020-36331 CVE-2020-36332 ==================================================================== 1. Summary:
An update for libwebp is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
- Relevant releases/architectures:
Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64
- Description:
The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format (RIFF). Webmasters, web developers and browser developers can use WebP to compress, archive, and distribute digital images more efficiently.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.5 Release Notes linked from the References section.
- Solution:
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
- Package List:
Red Hat Enterprise Linux AppStream (v. 8):
Source: libwebp-1.0.0-5.el8.src.rpm
aarch64: libwebp-1.0.0-5.el8.aarch64.rpm libwebp-debuginfo-1.0.0-5.el8.aarch64.rpm libwebp-debugsource-1.0.0-5.el8.aarch64.rpm libwebp-devel-1.0.0-5.el8.aarch64.rpm libwebp-java-debuginfo-1.0.0-5.el8.aarch64.rpm libwebp-tools-debuginfo-1.0.0-5.el8.aarch64.rpm
ppc64le: libwebp-1.0.0-5.el8.ppc64le.rpm libwebp-debuginfo-1.0.0-5.el8.ppc64le.rpm libwebp-debugsource-1.0.0-5.el8.ppc64le.rpm libwebp-devel-1.0.0-5.el8.ppc64le.rpm libwebp-java-debuginfo-1.0.0-5.el8.ppc64le.rpm libwebp-tools-debuginfo-1.0.0-5.el8.ppc64le.rpm
s390x: libwebp-1.0.0-5.el8.s390x.rpm libwebp-debuginfo-1.0.0-5.el8.s390x.rpm libwebp-debugsource-1.0.0-5.el8.s390x.rpm libwebp-devel-1.0.0-5.el8.s390x.rpm libwebp-java-debuginfo-1.0.0-5.el8.s390x.rpm libwebp-tools-debuginfo-1.0.0-5.el8.s390x.rpm
x86_64: libwebp-1.0.0-5.el8.i686.rpm libwebp-1.0.0-5.el8.x86_64.rpm libwebp-debuginfo-1.0.0-5.el8.i686.rpm libwebp-debuginfo-1.0.0-5.el8.x86_64.rpm libwebp-debugsource-1.0.0-5.el8.i686.rpm libwebp-debugsource-1.0.0-5.el8.x86_64.rpm libwebp-devel-1.0.0-5.el8.i686.rpm libwebp-devel-1.0.0-5.el8.x86_64.rpm libwebp-java-debuginfo-1.0.0-5.el8.i686.rpm libwebp-java-debuginfo-1.0.0-5.el8.x86_64.rpm libwebp-tools-debuginfo-1.0.0-5.el8.i686.rpm libwebp-tools-debuginfo-1.0.0-5.el8.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/
- References:
https://access.redhat.com/security/cve/CVE-2018-25009 https://access.redhat.com/security/cve/CVE-2018-25010 https://access.redhat.com/security/cve/CVE-2018-25012 https://access.redhat.com/security/cve/CVE-2018-25013 https://access.redhat.com/security/cve/CVE-2018-25014 https://access.redhat.com/security/cve/CVE-2020-36330 https://access.redhat.com/security/cve/CVE-2020-36331 https://access.redhat.com/security/cve/CVE-2020-36332 https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.5_release_notes/
- Contact:
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/
Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1
iQIVAwUBYYrdV9zjgjWX9erEAQjPKw//b87QnRCt7mK8HBE36Ryh32/KlNTbdNl6 KXkxyVMUVTaofuqdPoXmJOCUkaVUIxypxj4rnYKDIkRiWMIjTs11j5N17GRbUzC8 j0BLMniOja5AoeYJaRd3hSaJEh4Pwq7a1kYhlxwcJxQ2XUHLBNa8++aItgRcpfOv ANQKsfjppoLqTAvgSNwvbLEG+yiObS/oj3wxZpIL1LVgAFiHQZBgAQYci6Oi712Y O3zyuq5jWkGcPtvp+v62fv3vVM4lqMcDna59O8DpcPmgwDgnJjQv8hd6WsIjMc6l ofXaipBrUlr5viTMDBMt36Vel2M4mvIcfrA+4walNO0mGpMrB/2ukqyn2yMzO8dl zmMGw4XsBFVKvqjkjiIApyn2UtmPelOyjDwr0WnUvrx/CprW/cxhA1Ou1tSPwMEE 0DIvANBtNLMm//1juXKSUUew8lKy32I06hrp9bLq44p15DeC1cab7V1cb1e+urWm Pa3ZiUHvFpiKK5hRrAx64I0ZDle0vgwe92OIi5ibT+FT6F5dL4cnbhv/6pDi/saP YDZlQNidSs8QYRWRJdXCH7EDCRyncZjFKTrnuJhpJ/Iz8cCIl0JjtnbeVaW7iHsI qnqSANHZV+iVrSJEav8JLmWWkrf9HYlixI6udpG5cZmNt4Be9q6f8WIguq7mPy3k lJzqUU7nXTw=nPk5 -----END PGP SIGNATURE-----
-- RHSA-announce mailing list RHSA-announce@redhat.com https://listman.redhat.com/mailman/listinfo/rhsa-announce . ========================================================================== Ubuntu Security Notice USN-4971-1 June 01, 2021
libwebp vulnerabilities
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 21.04
- Ubuntu 20.10
- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
Summary:
libwebp could be made to crash or run programs as your login if it opened a specially crafted file.
Details:
It was discovered that libwebp incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image file, a remote attacker could use this issue to cause libwebp to crash, resulting in a denial of service, or possibly execute arbitrary code.
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 21.04: libwebp6 0.6.1-2ubuntu0.21.04.1 libwebpdemux2 0.6.1-2ubuntu0.21.04.1 libwebpmux3 0.6.1-2ubuntu0.21.04.1
Ubuntu 20.10: libwebp6 0.6.1-2ubuntu0.20.10.1 libwebpdemux2 0.6.1-2ubuntu0.20.10.1 libwebpmux3 0.6.1-2ubuntu0.20.10.1
Ubuntu 20.04 LTS: libwebp6 0.6.1-2ubuntu0.20.04.1 libwebpdemux2 0.6.1-2ubuntu0.20.04.1 libwebpmux3 0.6.1-2ubuntu0.20.04.1
Ubuntu 18.04 LTS: libwebp6 0.6.1-2ubuntu0.18.04.1 libwebpdemux2 0.6.1-2ubuntu0.18.04.1 libwebpmux3 0.6.1-2ubuntu0.18.04.1
In general, a standard system update will make all the necessary changes. Solution:
For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:
https://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html
For Red Hat OpenShift Logging 5.3, see the following instructions to apply this update:
https://docs.openshift.com/container-platform/4.7/logging/cluster-logging-upgrading.html
- Bugs fixed (https://bugzilla.redhat.com/):
1963232 - CVE-2021-33194 golang: x/net/html: infinite loop in ParseFragment
- JIRA issues fixed (https://issues.jboss.org/):
LOG-1168 - Disable hostname verification in syslog TLS settings
LOG-1235 - Using HTTPS without a secret does not translate into the correct 'scheme' value in Fluentd
LOG-1375 - ssl_ca_cert should be optional
LOG-1378 - CLO should support sasl_plaintext(Password over http)
LOG-1392 - In fluentd config, flush_interval can't be set with flush_mode=immediate
LOG-1494 - Syslog output is serializing json incorrectly
LOG-1555 - Fluentd logs emit transaction failed: error_class=NoMethodError while forwarding to external syslog server
LOG-1575 - Rejected by Elasticsearch and unexpected json-parsing
LOG-1735 - Regression introducing flush_at_shutdown
LOG-1774 - The collector logs should be excluded in fluent.conf
LOG-1776 - fluentd total_limit_size sets value beyond available space
LOG-1822 - OpenShift Alerting Rules Style-Guide Compliance
LOG-1859 - CLO Should not error and exit early on missing ca-bundle when cluster wide proxy is not enabled
LOG-1862 - Unsupported kafka parameters when enabled Kafka SASL
LOG-1903 - Fix the Display of ClusterLogging type in OLM
LOG-1911 - CLF API changes to Opt-in to multiline error detection
LOG-1918 - Alert FluentdNodeDown always firing
LOG-1939 - Opt-in multiline detection breaks cloudwatch forwarding
6
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-202105-1457",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "ontap select deploy administration utility",
"scope": "eq",
"trust": 1.0,
"vendor": "netapp",
"version": null
},
{
"model": "linux",
"scope": "eq",
"trust": 1.0,
"vendor": "debian",
"version": "10.0"
},
{
"model": "enterprise linux",
"scope": "eq",
"trust": 1.0,
"vendor": "redhat",
"version": "8.0"
},
{
"model": "ipados",
"scope": "lt",
"trust": 1.0,
"vendor": "apple",
"version": "14.7"
},
{
"model": "iphone os",
"scope": "lt",
"trust": 1.0,
"vendor": "apple",
"version": "14.7"
},
{
"model": "linux",
"scope": "eq",
"trust": 1.0,
"vendor": "debian",
"version": "9.0"
},
{
"model": "libwebp",
"scope": "lt",
"trust": 1.0,
"vendor": "webmproject",
"version": "1.0.1"
},
{
"model": "libwebp",
"scope": null,
"trust": 0.8,
"vendor": "the webm",
"version": null
},
{
"model": "gnu/linux",
"scope": null,
"trust": 0.8,
"vendor": "debian",
"version": null
},
{
"model": "ontap select deploy administration utility",
"scope": null,
"trust": 0.8,
"vendor": "netapp",
"version": null
},
{
"model": "ipados",
"scope": null,
"trust": 0.8,
"vendor": "\u30a2\u30c3\u30d7\u30eb",
"version": null
},
{
"model": "ios",
"scope": null,
"trust": 0.8,
"vendor": "\u30a2\u30c3\u30d7\u30eb",
"version": null
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-016580"
},
{
"db": "NVD",
"id": "CVE-2020-36330"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Red Hat",
"sources": [
{
"db": "PACKETSTORM",
"id": "165286"
},
{
"db": "PACKETSTORM",
"id": "165287"
},
{
"db": "PACKETSTORM",
"id": "165288"
},
{
"db": "PACKETSTORM",
"id": "165296"
},
{
"db": "PACKETSTORM",
"id": "164842"
},
{
"db": "PACKETSTORM",
"id": "164967"
}
],
"trust": 0.6
},
"cve": "CVE-2020-36330",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "PARTIAL",
"baseScore": 6.4,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CVE-2020-36330",
"impactScore": 4.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 1.9,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "PARTIAL",
"baseScore": 6.4,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "VHN-391909",
"impactScore": 4.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:P/I:N/A:P",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 3.9,
"id": "CVE-2020-36330",
"impactScore": 5.2,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
{
"attackComplexity": "Low",
"attackVector": "Network",
"author": "NVD",
"availabilityImpact": "High",
"baseScore": 9.1,
"baseSeverity": "Critical",
"confidentialityImpact": "High",
"exploitabilityScore": null,
"id": "CVE-2020-36330",
"impactScore": null,
"integrityImpact": "None",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2020-36330",
"trust": 1.0,
"value": "CRITICAL"
},
{
"author": "NVD",
"id": "CVE-2020-36330",
"trust": 0.8,
"value": "Critical"
},
{
"author": "CNNVD",
"id": "CNNVD-202105-1386",
"trust": 0.6,
"value": "CRITICAL"
},
{
"author": "VULHUB",
"id": "VHN-391909",
"trust": 0.1,
"value": "MEDIUM"
},
{
"author": "VULMON",
"id": "CVE-2020-36330",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-391909"
},
{
"db": "VULMON",
"id": "CVE-2020-36330"
},
{
"db": "CNNVD",
"id": "CNNVD-202105-1386"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-016580"
},
{
"db": "NVD",
"id": "CVE-2020-36330"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability. libwebp Is vulnerable to an out-of-bounds read.Information is obtained and denial of service (DoS) It may be put into a state. Bugs fixed (https://bugzilla.redhat.com/):\n\n1944888 - CVE-2021-21409 netty: Request smuggling via content-length header\n2004133 - CVE-2021-37136 netty-codec: Bzip2Decoder doesn\u0027t allow setting size restrictions for decompressed data\n2004135 - CVE-2021-37137 netty-codec: SnappyFrameDecoder doesn\u0027t restrict chunk length and may buffer skippable chunks in an unnecessary way\n2030932 - CVE-2021-44228 log4j-core: Remote code execution in Log4j 2.x when logs contain an attacker-controlled string value\n\n5. JIRA issues fixed (https://issues.jboss.org/):\n\nLOG-1971 - Applying cluster state is causing elasticsearch to hit an issue and become unusable\n\n6. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\n==================================================================== \nRed Hat Security Advisory\n\nSynopsis: Moderate: libwebp security update\nAdvisory ID: RHSA-2021:4231-01\nProduct: Red Hat Enterprise Linux\nAdvisory URL: https://access.redhat.com/errata/RHSA-2021:4231\nIssue date: 2021-11-09\nCVE Names: CVE-2018-25009 CVE-2018-25010 CVE-2018-25012\n CVE-2018-25013 CVE-2018-25014 CVE-2020-36330\n CVE-2020-36331 CVE-2020-36332\n====================================================================\n1. Summary:\n\nAn update for libwebp is now available for Red Hat Enterprise Linux 8. \n\nRed Hat Product Security has rated this update as having a security impact\nof Moderate. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available for each vulnerability from\nthe CVE link(s) in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64\n\n3. Description:\n\nThe libwebp packages provide a library and tools for the WebP graphics\nformat. WebP is an image format with a lossy compression of digital\nphotographic images. WebP consists of a codec based on the VP8 format, and\na container based on the Resource Interchange File Format (RIFF). \nWebmasters, web developers and browser developers can use WebP to compress,\narchive, and distribute digital images more efficiently. \n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat\nEnterprise Linux 8.5 Release Notes linked from the References section. \n\n4. Solution:\n\nFor details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\n5. Package List:\n\nRed Hat Enterprise Linux AppStream (v. 8):\n\nSource:\nlibwebp-1.0.0-5.el8.src.rpm\n\naarch64:\nlibwebp-1.0.0-5.el8.aarch64.rpm\nlibwebp-debuginfo-1.0.0-5.el8.aarch64.rpm\nlibwebp-debugsource-1.0.0-5.el8.aarch64.rpm\nlibwebp-devel-1.0.0-5.el8.aarch64.rpm\nlibwebp-java-debuginfo-1.0.0-5.el8.aarch64.rpm\nlibwebp-tools-debuginfo-1.0.0-5.el8.aarch64.rpm\n\nppc64le:\nlibwebp-1.0.0-5.el8.ppc64le.rpm\nlibwebp-debuginfo-1.0.0-5.el8.ppc64le.rpm\nlibwebp-debugsource-1.0.0-5.el8.ppc64le.rpm\nlibwebp-devel-1.0.0-5.el8.ppc64le.rpm\nlibwebp-java-debuginfo-1.0.0-5.el8.ppc64le.rpm\nlibwebp-tools-debuginfo-1.0.0-5.el8.ppc64le.rpm\n\ns390x:\nlibwebp-1.0.0-5.el8.s390x.rpm\nlibwebp-debuginfo-1.0.0-5.el8.s390x.rpm\nlibwebp-debugsource-1.0.0-5.el8.s390x.rpm\nlibwebp-devel-1.0.0-5.el8.s390x.rpm\nlibwebp-java-debuginfo-1.0.0-5.el8.s390x.rpm\nlibwebp-tools-debuginfo-1.0.0-5.el8.s390x.rpm\n\nx86_64:\nlibwebp-1.0.0-5.el8.i686.rpm\nlibwebp-1.0.0-5.el8.x86_64.rpm\nlibwebp-debuginfo-1.0.0-5.el8.i686.rpm\nlibwebp-debuginfo-1.0.0-5.el8.x86_64.rpm\nlibwebp-debugsource-1.0.0-5.el8.i686.rpm\nlibwebp-debugsource-1.0.0-5.el8.x86_64.rpm\nlibwebp-devel-1.0.0-5.el8.i686.rpm\nlibwebp-devel-1.0.0-5.el8.x86_64.rpm\nlibwebp-java-debuginfo-1.0.0-5.el8.i686.rpm\nlibwebp-java-debuginfo-1.0.0-5.el8.x86_64.rpm\nlibwebp-tools-debuginfo-1.0.0-5.el8.i686.rpm\nlibwebp-tools-debuginfo-1.0.0-5.el8.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security. Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2018-25009\nhttps://access.redhat.com/security/cve/CVE-2018-25010\nhttps://access.redhat.com/security/cve/CVE-2018-25012\nhttps://access.redhat.com/security/cve/CVE-2018-25013\nhttps://access.redhat.com/security/cve/CVE-2018-25014\nhttps://access.redhat.com/security/cve/CVE-2020-36330\nhttps://access.redhat.com/security/cve/CVE-2020-36331\nhttps://access.redhat.com/security/cve/CVE-2020-36332\nhttps://access.redhat.com/security/updates/classification/#moderate\nhttps://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.5_release_notes/\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2021 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n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\nlJzqUU7nXTw=nPk5\n-----END PGP SIGNATURE-----\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://listman.redhat.com/mailman/listinfo/rhsa-announce\n. ==========================================================================\nUbuntu Security Notice USN-4971-1\nJune 01, 2021\n\nlibwebp vulnerabilities\n==========================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 21.04\n- Ubuntu 20.10\n- Ubuntu 20.04 LTS\n- Ubuntu 18.04 LTS\n\nSummary:\n\nlibwebp could be made to crash or run programs as your login if it\nopened a specially crafted file. \n\nDetails:\n\nIt was discovered that libwebp incorrectly handled certain malformed\nimages. If a user or automated system were tricked into opening a specially\ncrafted image file, a remote attacker could use this issue to cause libwebp\nto crash, resulting in a denial of service, or possibly execute arbitrary\ncode. \n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 21.04:\n libwebp6 0.6.1-2ubuntu0.21.04.1\n libwebpdemux2 0.6.1-2ubuntu0.21.04.1\n libwebpmux3 0.6.1-2ubuntu0.21.04.1\n\nUbuntu 20.10:\n libwebp6 0.6.1-2ubuntu0.20.10.1\n libwebpdemux2 0.6.1-2ubuntu0.20.10.1\n libwebpmux3 0.6.1-2ubuntu0.20.10.1\n\nUbuntu 20.04 LTS:\n libwebp6 0.6.1-2ubuntu0.20.04.1\n libwebpdemux2 0.6.1-2ubuntu0.20.04.1\n libwebpmux3 0.6.1-2ubuntu0.20.04.1\n\nUbuntu 18.04 LTS:\n libwebp6 0.6.1-2ubuntu0.18.04.1\n libwebpdemux2 0.6.1-2ubuntu0.18.04.1\n libwebpmux3 0.6.1-2ubuntu0.18.04.1\n\nIn general, a standard system update will make all the necessary changes. Solution:\n\nFor OpenShift Container Platform 4.9 see the following documentation, which\nwill be updated shortly for this release, for important instructions on how\nto upgrade your cluster and fully apply this errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html\n\nFor Red Hat OpenShift Logging 5.3, see the following instructions to apply\nthis update:\n\nhttps://docs.openshift.com/container-platform/4.7/logging/cluster-logging-upgrading.html\n\n4. Bugs fixed (https://bugzilla.redhat.com/):\n\n1963232 - CVE-2021-33194 golang: x/net/html: infinite loop in ParseFragment\n\n5. JIRA issues fixed (https://issues.jboss.org/):\n\nLOG-1168 - Disable hostname verification in syslog TLS settings\nLOG-1235 - Using HTTPS without a secret does not translate into the correct \u0027scheme\u0027 value in Fluentd\nLOG-1375 - ssl_ca_cert should be optional\nLOG-1378 - CLO should support sasl_plaintext(Password over http)\nLOG-1392 - In fluentd config, flush_interval can\u0027t be set with flush_mode=immediate\nLOG-1494 - Syslog output is serializing json incorrectly\nLOG-1555 - Fluentd logs emit transaction failed: error_class=NoMethodError while forwarding to external syslog server\nLOG-1575 - Rejected by Elasticsearch and unexpected json-parsing\nLOG-1735 - Regression introducing flush_at_shutdown \nLOG-1774 - The collector logs should be excluded in fluent.conf\nLOG-1776 - fluentd total_limit_size sets value beyond available space\nLOG-1822 - OpenShift Alerting Rules Style-Guide Compliance\nLOG-1859 - CLO Should not error and exit early on missing ca-bundle when cluster wide proxy is not enabled\nLOG-1862 - Unsupported kafka parameters when enabled Kafka SASL\nLOG-1903 - Fix the Display of ClusterLogging type in OLM\nLOG-1911 - CLF API changes to Opt-in to multiline error detection\nLOG-1918 - Alert `FluentdNodeDown` always firing \nLOG-1939 - Opt-in multiline detection breaks cloudwatch forwarding\n\n6",
"sources": [
{
"db": "NVD",
"id": "CVE-2020-36330"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-016580"
},
{
"db": "VULHUB",
"id": "VHN-391909"
},
{
"db": "VULMON",
"id": "CVE-2020-36330"
},
{
"db": "PACKETSTORM",
"id": "165286"
},
{
"db": "PACKETSTORM",
"id": "165287"
},
{
"db": "PACKETSTORM",
"id": "165288"
},
{
"db": "PACKETSTORM",
"id": "165296"
},
{
"db": "PACKETSTORM",
"id": "164842"
},
{
"db": "PACKETSTORM",
"id": "162900"
},
{
"db": "PACKETSTORM",
"id": "164967"
}
],
"trust": 2.43
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2020-36330",
"trust": 4.1
},
{
"db": "PACKETSTORM",
"id": "164842",
"trust": 0.8
},
{
"db": "PACKETSTORM",
"id": "165287",
"trust": 0.8
},
{
"db": "PACKETSTORM",
"id": "162900",
"trust": 0.8
},
{
"db": "PACKETSTORM",
"id": "165286",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2018-016580",
"trust": 0.8
},
{
"db": "PACKETSTORM",
"id": "163076",
"trust": 0.7
},
{
"db": "CNNVD",
"id": "CNNVD-202105-1386",
"trust": 0.7
},
{
"db": "AUSCERT",
"id": "ESB-2022.3977",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2021.2102",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2021.1965",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2021.4254",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2021.2485.2",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2021.1880",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2021.3905",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2021.1914",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2021.3789",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2022.0245",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2021.1959",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2021.4229",
"trust": 0.6
},
{
"db": "CS-HELP",
"id": "SB2021072216",
"trust": 0.6
},
{
"db": "CS-HELP",
"id": "SB2021061301",
"trust": 0.6
},
{
"db": "CS-HELP",
"id": "SB2021060725",
"trust": 0.6
},
{
"db": "PACKETSTORM",
"id": "163645",
"trust": 0.6
},
{
"db": "PACKETSTORM",
"id": "165288",
"trust": 0.2
},
{
"db": "VULHUB",
"id": "VHN-391909",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2020-36330",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "165296",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "164967",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-391909"
},
{
"db": "VULMON",
"id": "CVE-2020-36330"
},
{
"db": "PACKETSTORM",
"id": "165286"
},
{
"db": "PACKETSTORM",
"id": "165287"
},
{
"db": "PACKETSTORM",
"id": "165288"
},
{
"db": "PACKETSTORM",
"id": "165296"
},
{
"db": "PACKETSTORM",
"id": "164842"
},
{
"db": "PACKETSTORM",
"id": "162900"
},
{
"db": "PACKETSTORM",
"id": "164967"
},
{
"db": "CNNVD",
"id": "CNNVD-202105-1386"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-016580"
},
{
"db": "NVD",
"id": "CVE-2020-36330"
}
]
},
"id": "VAR-202105-1457",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-391909"
}
],
"trust": 0.01
},
"last_update_date": "2026-03-09T21:09:51.393000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "HT212601 Apple\u00a0 Security update",
"trust": 0.8,
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00005.html"
},
{
"title": "libwebp Buffer error vulnerability fix",
"trust": 0.6,
"url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=151883"
},
{
"title": "Debian Security Advisories: DSA-4930-1 libwebp -- security update",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=6dad0021173658916444dfc89f8d2495"
},
{
"title": "Red Hat: Important: OpenShift Container Platform 4.11.0 bug fix and security update",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20225069 - Security Advisory"
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2020-36330"
},
{
"db": "CNNVD",
"id": "CNNVD-202105-1386"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-016580"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-125",
"trust": 1.1
},
{
"problemtype": "Out-of-bounds read (CWE-125) [NVD Evaluation ]",
"trust": 0.8
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-391909"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-016580"
},
{
"db": "NVD",
"id": "CVE-2020-36330"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.6,
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956853"
},
{
"trust": 1.9,
"url": "https://www.debian.org/security/2021/dsa-4930"
},
{
"trust": 1.9,
"url": "https://nvd.nist.gov/vuln/detail/cve-2020-36330"
},
{
"trust": 1.8,
"url": "https://security.netapp.com/advisory/ntap-20211104-0004/"
},
{
"trust": 1.8,
"url": "https://support.apple.com/kb/ht212601"
},
{
"trust": 1.8,
"url": "http://seclists.org/fulldisclosure/2021/jul/54"
},
{
"trust": 1.8,
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00005.html"
},
{
"trust": 1.8,
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00006.html"
},
{
"trust": 0.7,
"url": "https://nvd.nist.gov/vuln/detail/cve-2018-25013"
},
{
"trust": 0.7,
"url": "https://nvd.nist.gov/vuln/detail/cve-2018-25009"
},
{
"trust": 0.6,
"url": "https://access.redhat.com/security/cve/cve-2018-25013"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2018-25012"
},
{
"trust": 0.6,
"url": "https://access.redhat.com/security/cve/cve-2018-25014"
},
{
"trust": 0.6,
"url": "https://access.redhat.com/security/cve/cve-2018-25012"
},
{
"trust": 0.6,
"url": "https://access.redhat.com/security/cve/cve-2020-36331"
},
{
"trust": 0.6,
"url": "https://access.redhat.com/security/cve/cve-2020-36330"
},
{
"trust": 0.6,
"url": "https://access.redhat.com/security/cve/cve-2020-36332"
},
{
"trust": 0.6,
"url": "https://listman.redhat.com/mailman/listinfo/rhsa-announce"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2018-25010"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2018-25014"
},
{
"trust": 0.6,
"url": "https://bugzilla.redhat.com/):"
},
{
"trust": 0.6,
"url": "https://access.redhat.com/security/cve/cve-2018-25009"
},
{
"trust": 0.6,
"url": "https://access.redhat.com/security/cve/cve-2018-25010"
},
{
"trust": 0.6,
"url": "https://access.redhat.com/security/team/contact/"
},
{
"trust": 0.6,
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2022.0245"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2022.3977"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2021.1959"
},
{
"trust": 0.6,
"url": "https://packetstormsecurity.com/files/165287/red-hat-security-advisory-2021-5127-05.html"
},
{
"trust": 0.6,
"url": "https://www.cybersecurity-help.cz/vdb/sb2021060725"
},
{
"trust": 0.6,
"url": "https://vigilance.fr/vulnerability/libwebp-five-vulnerabilities-35580"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2021.2485.2"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2021.1965"
},
{
"trust": 0.6,
"url": "https://packetstormsecurity.com/files/165286/red-hat-security-advisory-2021-5128-06.html"
},
{
"trust": 0.6,
"url": "https://www.cybersecurity-help.cz/vdb/sb2021072216"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2021.3789"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2021.3905"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2021.1914"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2021.4229"
},
{
"trust": 0.6,
"url": "https://support.apple.com/en-us/ht212601"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2021.1880"
},
{
"trust": 0.6,
"url": "https://www.cybersecurity-help.cz/vdb/sb2021061301"
},
{
"trust": 0.6,
"url": "https://packetstormsecurity.com/files/163645/apple-security-advisory-2021-07-21-1.html"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2021.4254"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2021.2102"
},
{
"trust": 0.6,
"url": "https://packetstormsecurity.com/files/163076/ubuntu-security-notice-usn-4971-2.html"
},
{
"trust": 0.6,
"url": "https://packetstormsecurity.com/files/162900/ubuntu-security-notice-usn-4971-1.html"
},
{
"trust": 0.6,
"url": "https://packetstormsecurity.com/files/164842/red-hat-security-advisory-2021-4231-04.html"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2020-16135"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-3200"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2020-35522"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2019-5827"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2020-35524"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-27645"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-33574"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2020-13435"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2019-5827"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2020-24370"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2020-14145"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2019-13751"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2019-19603"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2020-14145"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2020-35521"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-35942"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2019-17594"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2020-24370"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-3572"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2020-12762"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-36086"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2019-13750"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2019-13751"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-22898"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2020-12762"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2020-16135"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-36084"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2020-17541"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-3800"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2019-17594"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-36087"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-31535"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-3445"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2020-13435"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2019-19603"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-22925"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2019-18218"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-20232"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-20266"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2019-20838"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-22876"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-20231"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2020-14155"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2019-20838"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2020-17541"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-36085"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-33560"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2019-17595"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-3481"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-42574"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2020-14155"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2020-35523"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-28153"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2019-13750"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-3426"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2019-18218"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2021-3580"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2019-17595"
},
{
"trust": 0.4,
"url": "https://access.redhat.com/security/vulnerabilities/rhsb-2021-009"
},
{
"trust": 0.4,
"url": "https://access.redhat.com/security/cve/cve-2021-43527"
},
{
"trust": 0.4,
"url": "https://access.redhat.com/security/cve/cve-2021-44228"
},
{
"trust": 0.4,
"url": "https://access.redhat.com/security/cve/cve-2021-3712"
},
{
"trust": 0.4,
"url": "https://issues.jboss.org/):"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2018-20673"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2020-35524"
},
{
"trust": 0.3,
"url": "https://access.redhat.com/security/cve/cve-2021-3778"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2020-35522"
},
{
"trust": 0.3,
"url": "https://access.redhat.com/security/cve/cve-2021-37136"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2020-35523"
},
{
"trust": 0.3,
"url": "https://access.redhat.com/security/cve/cve-2021-23841"
},
{
"trust": 0.3,
"url": "https://access.redhat.com/security/cve/cve-2018-20673"
},
{
"trust": 0.3,
"url": "https://access.redhat.com/security/cve/cve-2021-23840"
},
{
"trust": 0.3,
"url": "https://access.redhat.com/security/cve/cve-2021-37137"
},
{
"trust": 0.3,
"url": "https://access.redhat.com/security/cve/cve-2021-21409"
},
{
"trust": 0.3,
"url": "https://access.redhat.com/security/cve/cve-2021-3796"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2020-35521"
},
{
"trust": 0.3,
"url": "https://docs.openshift.com/container-platform/4.7/logging/cluster-logging-upgrading.html"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2020-36331"
},
{
"trust": 0.2,
"url": "https://docs.openshift.com/container-platform/4.8/release_notes/ocp-4-8-release-notes.html"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-20317"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-43267"
},
{
"trust": 0.2,
"url": "https://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-24504"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-27777"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-20239"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-36158"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-35448"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-3635"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-20284"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-36386"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2020-0427"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-24586"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-3348"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-26140"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-3487"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-26146"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-31440"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-3732"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-0129"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2020-10001"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-24502"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-3564"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-0427"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-23133"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-26144"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-3679"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-36312"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-29368"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-24588"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-29646"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-29155"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-3489"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-29660"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-26139"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-28971"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2019-14615"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-26143"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-3600"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-26145"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-33200"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-29650"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-33033"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-20194"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-26147"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-31916"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-10001"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2020-24503"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2019-14615"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2020-24502"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-31829"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-3573"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-20197"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-26141"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-28950"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-24587"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2020-24503"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2021-3659"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/125.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/errata/rhsa-2021:5128"
},
{
"trust": 0.1,
"url": "https://docs.openshift.com/container-platform/4.8/logging/cluster-logging-upgrading.html"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/errata/rhsa-2021:5127"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/errata/rhsa-2021:5129"
},
{
"trust": 0.1,
"url": "https://docs.openshift.com/container-platform/4.9/logging/cluster-logging-upgrading.html"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/errata/rhsa-2021:5137"
},
{
"trust": 0.1,
"url": "https://docs.openshift.com/container-platform/4.7/release_notes/ocp-4-7-release-notes.html"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/articles/11258"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/errata/rhsa-2021:4231"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.5_release_notes/"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2020-36332"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/security/team/key/"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/libwebp/0.6.1-2ubuntu0.20.10.1"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/libwebp/0.6.1-2ubuntu0.20.04.1"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/libwebp/0.6.1-2ubuntu0.18.04.1"
},
{
"trust": 0.1,
"url": "https://ubuntu.com/security/notices/usn-4971-1"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/libwebp/0.6.1-2ubuntu0.21.04.1"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/security/cve/cve-2021-33194"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/errata/rhsa-2021:4627"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-391909"
},
{
"db": "VULMON",
"id": "CVE-2020-36330"
},
{
"db": "PACKETSTORM",
"id": "165286"
},
{
"db": "PACKETSTORM",
"id": "165287"
},
{
"db": "PACKETSTORM",
"id": "165288"
},
{
"db": "PACKETSTORM",
"id": "165296"
},
{
"db": "PACKETSTORM",
"id": "164842"
},
{
"db": "PACKETSTORM",
"id": "162900"
},
{
"db": "PACKETSTORM",
"id": "164967"
},
{
"db": "CNNVD",
"id": "CNNVD-202105-1386"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-016580"
},
{
"db": "NVD",
"id": "CVE-2020-36330"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULHUB",
"id": "VHN-391909"
},
{
"db": "VULMON",
"id": "CVE-2020-36330"
},
{
"db": "PACKETSTORM",
"id": "165286"
},
{
"db": "PACKETSTORM",
"id": "165287"
},
{
"db": "PACKETSTORM",
"id": "165288"
},
{
"db": "PACKETSTORM",
"id": "165296"
},
{
"db": "PACKETSTORM",
"id": "164842"
},
{
"db": "PACKETSTORM",
"id": "162900"
},
{
"db": "PACKETSTORM",
"id": "164967"
},
{
"db": "CNNVD",
"id": "CNNVD-202105-1386"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-016580"
},
{
"db": "NVD",
"id": "CVE-2020-36330"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2021-05-21T00:00:00",
"db": "VULHUB",
"id": "VHN-391909"
},
{
"date": "2021-05-21T00:00:00",
"db": "VULMON",
"id": "CVE-2020-36330"
},
{
"date": "2021-12-15T15:20:33",
"db": "PACKETSTORM",
"id": "165286"
},
{
"date": "2021-12-15T15:20:43",
"db": "PACKETSTORM",
"id": "165287"
},
{
"date": "2021-12-15T15:22:36",
"db": "PACKETSTORM",
"id": "165288"
},
{
"date": "2021-12-15T15:27:05",
"db": "PACKETSTORM",
"id": "165296"
},
{
"date": "2021-11-10T17:05:32",
"db": "PACKETSTORM",
"id": "164842"
},
{
"date": "2021-06-01T15:15:43",
"db": "PACKETSTORM",
"id": "162900"
},
{
"date": "2021-11-15T17:25:56",
"db": "PACKETSTORM",
"id": "164967"
},
{
"date": "2021-05-21T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202105-1386"
},
{
"date": "2022-01-27T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2018-016580"
},
{
"date": "2021-05-21T17:15:08.353000",
"db": "NVD",
"id": "CVE-2020-36330"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2021-11-30T00:00:00",
"db": "VULHUB",
"id": "VHN-391909"
},
{
"date": "2021-11-30T00:00:00",
"db": "VULMON",
"id": "CVE-2020-36330"
},
{
"date": "2022-12-09T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202105-1386"
},
{
"date": "2022-01-27T08:54:00",
"db": "JVNDB",
"id": "JVNDB-2018-016580"
},
{
"date": "2021-11-30T19:43:36.433000",
"db": "NVD",
"id": "CVE-2020-36330"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "PACKETSTORM",
"id": "162900"
},
{
"db": "CNNVD",
"id": "CNNVD-202105-1386"
}
],
"trust": 0.7
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "libwebp\u00a0 Out-of-bounds read vulnerability",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-016580"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "buffer error",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202105-1386"
}
],
"trust": 0.6
}
}
OPENSUSE-SU-2021:1860-1
Vulnerability from csaf_opensuse - Published: 2021-07-10 18:55 - Updated: 2021-07-10 18:55Summary
Security update for libwebp
Severity
Critical
Notes
Title of the patch: Security update for libwebp
Description of the patch: This update for libwebp fixes the following issues:
- CVE-2018-25010: Fixed heap-based buffer overflow in ApplyFilter() (bsc#1185685).
- CVE-2020-36330: Fixed heap-based buffer overflow in ChunkVerifyAndAssign() (bsc#1185691).
- CVE-2020-36332: Fixed extreme memory allocation when reading a file (bsc#1185674).
- CVE-2020-36329: Fixed use-after-free in EmitFancyRGB() (bsc#1185652).
- CVE-2018-25012: Fixed heap-based buffer overflow in GetLE24() (bsc#1185690).
- CVE-2020-36328: Fixed heap-based buffer overflow in WebPDecode*Into functions (bsc#1185688).
- CVE-2018-25013: Fixed heap-based buffer overflow in ShiftBytes() (bsc#1185654).
- CVE-2020-36331: Fixed heap-based buffer overflow in ChunkAssignData() (bsc#1185686).
- CVE-2018-25009: Fixed heap-based buffer overflow in GetLE16() (bsc#1185673).
- CVE-2018-25011: Fixed fail on multiple image chunks (bsc#1186247).
Patchnames: openSUSE-SLE-15.3-2021-1860
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
9.1 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
9.1 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
9.8 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
9.1 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
9.1 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
9.8 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
9.1 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for libwebp",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for libwebp fixes the following issues:\n\n- CVE-2018-25010: Fixed heap-based buffer overflow in ApplyFilter() (bsc#1185685).\n- CVE-2020-36330: Fixed heap-based buffer overflow in ChunkVerifyAndAssign() (bsc#1185691).\n- CVE-2020-36332: Fixed extreme memory allocation when reading a file (bsc#1185674).\n- CVE-2020-36329: Fixed use-after-free in EmitFancyRGB() (bsc#1185652).\n- CVE-2018-25012: Fixed heap-based buffer overflow in GetLE24() (bsc#1185690).\n- CVE-2020-36328: Fixed heap-based buffer overflow in WebPDecode*Into functions (bsc#1185688).\n- CVE-2018-25013: Fixed heap-based buffer overflow in ShiftBytes() (bsc#1185654).\n- CVE-2020-36331: Fixed heap-based buffer overflow in ChunkAssignData() (bsc#1185686).\n- CVE-2018-25009: Fixed heap-based buffer overflow in GetLE16() (bsc#1185673).\n- CVE-2018-25011: Fixed fail on multiple image chunks (bsc#1186247).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-SLE-15.3-2021-1860",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2021_1860-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2021:1860-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/4ZIJ3ZK5FGNGJN6E65XZKMQPSQ3RKNVG/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2021:1860-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/4ZIJ3ZK5FGNGJN6E65XZKMQPSQ3RKNVG/"
},
{
"category": "self",
"summary": "SUSE Bug 1185652",
"url": "https://bugzilla.suse.com/1185652"
},
{
"category": "self",
"summary": "SUSE Bug 1185654",
"url": "https://bugzilla.suse.com/1185654"
},
{
"category": "self",
"summary": "SUSE Bug 1185673",
"url": "https://bugzilla.suse.com/1185673"
},
{
"category": "self",
"summary": "SUSE Bug 1185674",
"url": "https://bugzilla.suse.com/1185674"
},
{
"category": "self",
"summary": "SUSE Bug 1185685",
"url": "https://bugzilla.suse.com/1185685"
},
{
"category": "self",
"summary": "SUSE Bug 1185686",
"url": "https://bugzilla.suse.com/1185686"
},
{
"category": "self",
"summary": "SUSE Bug 1185688",
"url": "https://bugzilla.suse.com/1185688"
},
{
"category": "self",
"summary": "SUSE Bug 1185690",
"url": "https://bugzilla.suse.com/1185690"
},
{
"category": "self",
"summary": "SUSE Bug 1185691",
"url": "https://bugzilla.suse.com/1185691"
},
{
"category": "self",
"summary": "SUSE Bug 1186247",
"url": "https://bugzilla.suse.com/1186247"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-25009 page",
"url": "https://www.suse.com/security/cve/CVE-2018-25009/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-25010 page",
"url": "https://www.suse.com/security/cve/CVE-2018-25010/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-25011 page",
"url": "https://www.suse.com/security/cve/CVE-2018-25011/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-25012 page",
"url": "https://www.suse.com/security/cve/CVE-2018-25012/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-25013 page",
"url": "https://www.suse.com/security/cve/CVE-2018-25013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-36328 page",
"url": "https://www.suse.com/security/cve/CVE-2020-36328/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-36329 page",
"url": "https://www.suse.com/security/cve/CVE-2020-36329/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-36330 page",
"url": "https://www.suse.com/security/cve/CVE-2020-36330/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-36331 page",
"url": "https://www.suse.com/security/cve/CVE-2020-36331/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-36332 page",
"url": "https://www.suse.com/security/cve/CVE-2020-36332/"
}
],
"title": "Security update for libwebp",
"tracking": {
"current_release_date": "2021-07-10T18:55:42Z",
"generator": {
"date": "2021-07-10T18:55:42Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2021:1860-1",
"initial_release_date": "2021-07-10T18:55:42Z",
"revision_history": [
{
"date": "2021-07-10T18:55:42Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libwebp6-0.5.0-3.5.1.aarch64",
"product": {
"name": "libwebp6-0.5.0-3.5.1.aarch64",
"product_id": "libwebp6-0.5.0-3.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwebpdecoder2-0.5.0-3.5.1.aarch64",
"product": {
"name": "libwebpdecoder2-0.5.0-3.5.1.aarch64",
"product_id": "libwebpdecoder2-0.5.0-3.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwebpextras0-0.5.0-3.5.1.aarch64",
"product": {
"name": "libwebpextras0-0.5.0-3.5.1.aarch64",
"product_id": "libwebpextras0-0.5.0-3.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwebpmux2-0.5.0-3.5.1.aarch64",
"product": {
"name": "libwebpmux2-0.5.0-3.5.1.aarch64",
"product_id": "libwebpmux2-0.5.0-3.5.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp6-0.5.0-3.5.1.ppc64le",
"product": {
"name": "libwebp6-0.5.0-3.5.1.ppc64le",
"product_id": "libwebp6-0.5.0-3.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"product": {
"name": "libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"product_id": "libwebpdecoder2-0.5.0-3.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwebpextras0-0.5.0-3.5.1.ppc64le",
"product": {
"name": "libwebpextras0-0.5.0-3.5.1.ppc64le",
"product_id": "libwebpextras0-0.5.0-3.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwebpmux2-0.5.0-3.5.1.ppc64le",
"product": {
"name": "libwebpmux2-0.5.0-3.5.1.ppc64le",
"product_id": "libwebpmux2-0.5.0-3.5.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp6-0.5.0-3.5.1.s390x",
"product": {
"name": "libwebp6-0.5.0-3.5.1.s390x",
"product_id": "libwebp6-0.5.0-3.5.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebpdecoder2-0.5.0-3.5.1.s390x",
"product": {
"name": "libwebpdecoder2-0.5.0-3.5.1.s390x",
"product_id": "libwebpdecoder2-0.5.0-3.5.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebpextras0-0.5.0-3.5.1.s390x",
"product": {
"name": "libwebpextras0-0.5.0-3.5.1.s390x",
"product_id": "libwebpextras0-0.5.0-3.5.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebpmux2-0.5.0-3.5.1.s390x",
"product": {
"name": "libwebpmux2-0.5.0-3.5.1.s390x",
"product_id": "libwebpmux2-0.5.0-3.5.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp6-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebp6-0.5.0-3.5.1.x86_64",
"product_id": "libwebp6-0.5.0-3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebp6-32bit-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebp6-32bit-0.5.0-3.5.1.x86_64",
"product_id": "libwebp6-32bit-0.5.0-3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpdecoder2-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebpdecoder2-0.5.0-3.5.1.x86_64",
"product_id": "libwebpdecoder2-0.5.0-3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"product_id": "libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpextras0-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebpextras0-0.5.0-3.5.1.x86_64",
"product_id": "libwebpextras0-0.5.0-3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"product_id": "libwebpextras0-32bit-0.5.0-3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpmux2-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebpmux2-0.5.0-3.5.1.x86_64",
"product_id": "libwebpmux2-0.5.0-3.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebpmux2-32bit-0.5.0-3.5.1.x86_64",
"product": {
"name": "libwebpmux2-32bit-0.5.0-3.5.1.x86_64",
"product_id": "libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.3",
"product": {
"name": "openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebp6-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebp6-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-0.5.0-3.5.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp6-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp6-32bit-0.5.0-3.5.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebp6-32bit-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-0.5.0-3.5.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdecoder2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-0.5.0-3.5.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpextras0-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpextras0-32bit-0.5.0-3.5.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-0.5.0-3.5.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpmux2-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebpmux2-32bit-0.5.0-3.5.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
},
"product_reference": "libwebpmux2-32bit-0.5.0-3.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-25009",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-25009"
}
],
"notes": [
{
"category": "general",
"text": "A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in GetLE16().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-25009",
"url": "https://www.suse.com/security/cve/CVE-2018-25009"
},
{
"category": "external",
"summary": "SUSE Bug 1185673 for CVE-2018-25009",
"url": "https://bugzilla.suse.com/1185673"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-10T18:55:42Z",
"details": "critical"
}
],
"title": "CVE-2018-25009"
},
{
"cve": "CVE-2018-25010",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-25010"
}
],
"notes": [
{
"category": "general",
"text": "A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ApplyFilter().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-25010",
"url": "https://www.suse.com/security/cve/CVE-2018-25010"
},
{
"category": "external",
"summary": "SUSE Bug 1185685 for CVE-2018-25010",
"url": "https://bugzilla.suse.com/1185685"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-10T18:55:42Z",
"details": "critical"
}
],
"title": "CVE-2018-25010"
},
{
"cve": "CVE-2018-25011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-25011"
}
],
"notes": [
{
"category": "general",
"text": "A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in PutLE16().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-25011",
"url": "https://www.suse.com/security/cve/CVE-2018-25011"
},
{
"category": "external",
"summary": "SUSE Bug 1186247 for CVE-2018-25011",
"url": "https://bugzilla.suse.com/1186247"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-10T18:55:42Z",
"details": "critical"
}
],
"title": "CVE-2018-25011"
},
{
"cve": "CVE-2018-25012",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-25012"
}
],
"notes": [
{
"category": "general",
"text": "A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in GetLE24().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-25012",
"url": "https://www.suse.com/security/cve/CVE-2018-25012"
},
{
"category": "external",
"summary": "SUSE Bug 1185690 for CVE-2018-25012",
"url": "https://bugzilla.suse.com/1185690"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-10T18:55:42Z",
"details": "critical"
}
],
"title": "CVE-2018-25012"
},
{
"cve": "CVE-2018-25013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-25013"
}
],
"notes": [
{
"category": "general",
"text": "A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ShiftBytes().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-25013",
"url": "https://www.suse.com/security/cve/CVE-2018-25013"
},
{
"category": "external",
"summary": "SUSE Bug 1185654 for CVE-2018-25013",
"url": "https://bugzilla.suse.com/1185654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-10T18:55:42Z",
"details": "critical"
}
],
"title": "CVE-2018-25013"
},
{
"cve": "CVE-2020-36328",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-36328"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in libwebp in versions before 1.0.1. A heap-based buffer overflow in function WebPDecodeRGBInto is possible due to an invalid check for buffer size. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-36328",
"url": "https://www.suse.com/security/cve/CVE-2020-36328"
},
{
"category": "external",
"summary": "SUSE Bug 1185688 for CVE-2020-36328",
"url": "https://bugzilla.suse.com/1185688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-10T18:55:42Z",
"details": "critical"
}
],
"title": "CVE-2020-36328"
},
{
"cve": "CVE-2020-36329",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-36329"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a thread being killed too early. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-36329",
"url": "https://www.suse.com/security/cve/CVE-2020-36329"
},
{
"category": "external",
"summary": "SUSE Bug 1185652 for CVE-2020-36329",
"url": "https://bugzilla.suse.com/1185652"
},
{
"category": "external",
"summary": "SUSE Bug 1187486 for CVE-2020-36329",
"url": "https://bugzilla.suse.com/1187486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-10T18:55:42Z",
"details": "moderate"
}
],
"title": "CVE-2020-36329"
},
{
"cve": "CVE-2020-36330",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-36330"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-36330",
"url": "https://www.suse.com/security/cve/CVE-2020-36330"
},
{
"category": "external",
"summary": "SUSE Bug 1185691 for CVE-2020-36330",
"url": "https://bugzilla.suse.com/1185691"
},
{
"category": "external",
"summary": "SUSE Bug 1187486 for CVE-2020-36330",
"url": "https://bugzilla.suse.com/1187486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-10T18:55:42Z",
"details": "important"
}
],
"title": "CVE-2020-36330"
},
{
"cve": "CVE-2020-36331",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-36331"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkAssignData. The highest threat from this vulnerability is to data confidentiality and to the service availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-36331",
"url": "https://www.suse.com/security/cve/CVE-2020-36331"
},
{
"category": "external",
"summary": "SUSE Bug 1185686 for CVE-2020-36331",
"url": "https://bugzilla.suse.com/1185686"
},
{
"category": "external",
"summary": "SUSE Bug 1187486 for CVE-2020-36331",
"url": "https://bugzilla.suse.com/1187486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-10T18:55:42Z",
"details": "critical"
}
],
"title": "CVE-2020-36331"
},
{
"cve": "CVE-2020-36332",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-36332"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in libwebp in versions before 1.0.1. When reading a file libwebp allocates an excessive amount of memory. The highest threat from this vulnerability is to the service availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-36332",
"url": "https://www.suse.com/security/cve/CVE-2020-36332"
},
{
"category": "external",
"summary": "SUSE Bug 1185674 for CVE-2020-36332",
"url": "https://bugzilla.suse.com/1185674"
},
{
"category": "external",
"summary": "SUSE Bug 1187486 for CVE-2020-36332",
"url": "https://bugzilla.suse.com/1187486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebp6-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebp6-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpdecoder2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpextras0-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpextras0-32bit-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.aarch64",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.ppc64le",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.s390x",
"openSUSE Leap 15.3:libwebpmux2-0.5.0-3.5.1.x86_64",
"openSUSE Leap 15.3:libwebpmux2-32bit-0.5.0-3.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-10T18:55:42Z",
"details": "important"
}
],
"title": "CVE-2020-36332"
}
]
}
RHSA-2021:4231
Vulnerability from csaf_redhat - Published: 2021-11-09 18:44 - Updated: 2025-11-21 18:26Summary
Red Hat Security Advisory: libwebp security update
Severity
Moderate
Notes
Topic: An update for libwebp is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format (RIFF). Webmasters, web developers and browser developers can use WebP to compress, archive, and distribute digital images more efficiently.
Security Fix(es):
* libwebp: out-of-bounds read in WebPMuxCreateInternal (CVE-2018-25009)
* libwebp: out-of-bounds read in ApplyFilter() (CVE-2018-25010)
* libwebp: out-of-bounds read in WebPMuxCreateInternal() (CVE-2018-25012)
* libwebp: out-of-bounds read in ShiftBytes() (CVE-2018-25013)
* libwebp: use of uninitialized value in ReadSymbol() (CVE-2018-25014)
* libwebp: out-of-bounds read in ChunkVerifyAndAssign() in mux/muxread.c (CVE-2020-36330)
* libwebp: out-of-bounds read in ChunkAssignData() in mux/muxinternal.c (CVE-2020-36331)
* libwebp: excessive memory allocation when reading a file (CVE-2020-36332)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.5 Release Notes linked from the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in libwebp. An out-of-bounds read was found in function WebPMuxCreateInternal. The highest threat from this vulnerability is to data confidentiality and to the service availability.
9.1 (Critical)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2021:4231
A flaw was found in libwebp. An out-of-bounds read was found in function ApplyFilter. The highest threat from this vulnerability is to data confidentiality and to the service availability.
9.1 (Critical)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2021:4231
A flaw was found in libwebp. An out-of-bounds read was found in function WebPMuxCreateInternal. The highest threat from this vulnerability is to data confidentiality and to the service availability.
9.1 (Critical)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2021:4231
A flaw was found in libwebp. An out-of-bounds read was found in function ShiftBytes. The highest threat from this vulnerability is to data confidentiality and to the service availability.
9.1 (Critical)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2021:4231
A flaw was found in libwebp. An unitialized variable is used in function ReadSymbol. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
9.8 (Critical)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2021:4231
A flaw was found in libwebp. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.
9.1 (Critical)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2021:4231
A flaw was found in libwebp. An out-of-bounds read was found in function ChunkAssignData. The highest threat from this vulnerability is to data confidentiality and to the service availability.
9.1 (Critical)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2021:4231
A flaw was found in libwebp. When reading a file libwebp allocates an excessive amount of memory. The highest threat from this vulnerability is to the service availability.
7.5 (High)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2021:4231
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for libwebp is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format (RIFF). Webmasters, web developers and browser developers can use WebP to compress, archive, and distribute digital images more efficiently.\n\nSecurity Fix(es):\n\n* libwebp: out-of-bounds read in WebPMuxCreateInternal (CVE-2018-25009)\n\n* libwebp: out-of-bounds read in ApplyFilter() (CVE-2018-25010)\n\n* libwebp: out-of-bounds read in WebPMuxCreateInternal() (CVE-2018-25012)\n\n* libwebp: out-of-bounds read in ShiftBytes() (CVE-2018-25013)\n\n* libwebp: use of uninitialized value in ReadSymbol() (CVE-2018-25014)\n\n* libwebp: out-of-bounds read in ChunkVerifyAndAssign() in mux/muxread.c (CVE-2020-36330)\n\n* libwebp: out-of-bounds read in ChunkAssignData() in mux/muxinternal.c (CVE-2020-36331)\n\n* libwebp: excessive memory allocation when reading a file (CVE-2020-36332)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.5 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:4231",
"url": "https://access.redhat.com/errata/RHSA-2021:4231"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.5_release_notes/",
"url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.5_release_notes/"
},
{
"category": "external",
"summary": "1956853",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956853"
},
{
"category": "external",
"summary": "1956856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956856"
},
{
"category": "external",
"summary": "1956868",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956868"
},
{
"category": "external",
"summary": "1956917",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956917"
},
{
"category": "external",
"summary": "1956918",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956918"
},
{
"category": "external",
"summary": "1956922",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956922"
},
{
"category": "external",
"summary": "1956926",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956926"
},
{
"category": "external",
"summary": "1956927",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956927"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_4231.json"
}
],
"title": "Red Hat Security Advisory: libwebp security update",
"tracking": {
"current_release_date": "2025-11-21T18:26:20+00:00",
"generator": {
"date": "2025-11-21T18:26:20+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2021:4231",
"initial_release_date": "2021-11-09T18:44:17+00:00",
"revision_history": [
{
"date": "2021-11-09T18:44:17+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-11-09T18:44:17+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:26:20+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp-0:1.0.0-5.el8.src",
"product": {
"name": "libwebp-0:1.0.0-5.el8.src",
"product_id": "libwebp-0:1.0.0-5.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp@1.0.0-5.el8?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp-0:1.0.0-5.el8.aarch64",
"product": {
"name": "libwebp-0:1.0.0-5.el8.aarch64",
"product_id": "libwebp-0:1.0.0-5.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp@1.0.0-5.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libwebp-devel-0:1.0.0-5.el8.aarch64",
"product": {
"name": "libwebp-devel-0:1.0.0-5.el8.aarch64",
"product_id": "libwebp-devel-0:1.0.0-5.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-devel@1.0.0-5.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"product": {
"name": "libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"product_id": "libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-debugsource@1.0.0-5.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"product": {
"name": "libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"product_id": "libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-debuginfo@1.0.0-5.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"product": {
"name": "libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"product_id": "libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-java-debuginfo@1.0.0-5.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"product": {
"name": "libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"product_id": "libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-tools-debuginfo@1.0.0-5.el8?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp-0:1.0.0-5.el8.ppc64le",
"product": {
"name": "libwebp-0:1.0.0-5.el8.ppc64le",
"product_id": "libwebp-0:1.0.0-5.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp@1.0.0-5.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libwebp-devel-0:1.0.0-5.el8.ppc64le",
"product": {
"name": "libwebp-devel-0:1.0.0-5.el8.ppc64le",
"product_id": "libwebp-devel-0:1.0.0-5.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-devel@1.0.0-5.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"product": {
"name": "libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"product_id": "libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-debugsource@1.0.0-5.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"product": {
"name": "libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"product_id": "libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-debuginfo@1.0.0-5.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"product": {
"name": "libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"product_id": "libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-java-debuginfo@1.0.0-5.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"product": {
"name": "libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"product_id": "libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-tools-debuginfo@1.0.0-5.el8?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp-0:1.0.0-5.el8.i686",
"product": {
"name": "libwebp-0:1.0.0-5.el8.i686",
"product_id": "libwebp-0:1.0.0-5.el8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp@1.0.0-5.el8?arch=i686"
}
}
},
{
"category": "product_version",
"name": "libwebp-devel-0:1.0.0-5.el8.i686",
"product": {
"name": "libwebp-devel-0:1.0.0-5.el8.i686",
"product_id": "libwebp-devel-0:1.0.0-5.el8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-devel@1.0.0-5.el8?arch=i686"
}
}
},
{
"category": "product_version",
"name": "libwebp-debugsource-0:1.0.0-5.el8.i686",
"product": {
"name": "libwebp-debugsource-0:1.0.0-5.el8.i686",
"product_id": "libwebp-debugsource-0:1.0.0-5.el8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-debugsource@1.0.0-5.el8?arch=i686"
}
}
},
{
"category": "product_version",
"name": "libwebp-debuginfo-0:1.0.0-5.el8.i686",
"product": {
"name": "libwebp-debuginfo-0:1.0.0-5.el8.i686",
"product_id": "libwebp-debuginfo-0:1.0.0-5.el8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-debuginfo@1.0.0-5.el8?arch=i686"
}
}
},
{
"category": "product_version",
"name": "libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"product": {
"name": "libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"product_id": "libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-java-debuginfo@1.0.0-5.el8?arch=i686"
}
}
},
{
"category": "product_version",
"name": "libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"product": {
"name": "libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"product_id": "libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-tools-debuginfo@1.0.0-5.el8?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp-0:1.0.0-5.el8.x86_64",
"product": {
"name": "libwebp-0:1.0.0-5.el8.x86_64",
"product_id": "libwebp-0:1.0.0-5.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp@1.0.0-5.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libwebp-devel-0:1.0.0-5.el8.x86_64",
"product": {
"name": "libwebp-devel-0:1.0.0-5.el8.x86_64",
"product_id": "libwebp-devel-0:1.0.0-5.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-devel@1.0.0-5.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"product": {
"name": "libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"product_id": "libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-debugsource@1.0.0-5.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"product": {
"name": "libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"product_id": "libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-debuginfo@1.0.0-5.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"product": {
"name": "libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"product_id": "libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-java-debuginfo@1.0.0-5.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64",
"product": {
"name": "libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64",
"product_id": "libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-tools-debuginfo@1.0.0-5.el8?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebp-0:1.0.0-5.el8.s390x",
"product": {
"name": "libwebp-0:1.0.0-5.el8.s390x",
"product_id": "libwebp-0:1.0.0-5.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp@1.0.0-5.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libwebp-devel-0:1.0.0-5.el8.s390x",
"product": {
"name": "libwebp-devel-0:1.0.0-5.el8.s390x",
"product_id": "libwebp-devel-0:1.0.0-5.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-devel@1.0.0-5.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libwebp-debugsource-0:1.0.0-5.el8.s390x",
"product": {
"name": "libwebp-debugsource-0:1.0.0-5.el8.s390x",
"product_id": "libwebp-debugsource-0:1.0.0-5.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-debugsource@1.0.0-5.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"product": {
"name": "libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"product_id": "libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-debuginfo@1.0.0-5.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"product": {
"name": "libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"product_id": "libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-java-debuginfo@1.0.0-5.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"product": {
"name": "libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"product_id": "libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwebp-tools-debuginfo@1.0.0-5.el8?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-0:1.0.0-5.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64"
},
"product_reference": "libwebp-0:1.0.0-5.el8.aarch64",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-0:1.0.0-5.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686"
},
"product_reference": "libwebp-0:1.0.0-5.el8.i686",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-0:1.0.0-5.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le"
},
"product_reference": "libwebp-0:1.0.0-5.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-0:1.0.0-5.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x"
},
"product_reference": "libwebp-0:1.0.0-5.el8.s390x",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-0:1.0.0-5.el8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src"
},
"product_reference": "libwebp-0:1.0.0-5.el8.src",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-0:1.0.0-5.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64"
},
"product_reference": "libwebp-0:1.0.0-5.el8.x86_64",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-debuginfo-0:1.0.0-5.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64"
},
"product_reference": "libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-debuginfo-0:1.0.0-5.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686"
},
"product_reference": "libwebp-debuginfo-0:1.0.0-5.el8.i686",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-debuginfo-0:1.0.0-5.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le"
},
"product_reference": "libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-debuginfo-0:1.0.0-5.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x"
},
"product_reference": "libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-debuginfo-0:1.0.0-5.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64"
},
"product_reference": "libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-debugsource-0:1.0.0-5.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64"
},
"product_reference": "libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-debugsource-0:1.0.0-5.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686"
},
"product_reference": "libwebp-debugsource-0:1.0.0-5.el8.i686",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-debugsource-0:1.0.0-5.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le"
},
"product_reference": "libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-debugsource-0:1.0.0-5.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x"
},
"product_reference": "libwebp-debugsource-0:1.0.0-5.el8.s390x",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-debugsource-0:1.0.0-5.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64"
},
"product_reference": "libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0:1.0.0-5.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64"
},
"product_reference": "libwebp-devel-0:1.0.0-5.el8.aarch64",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0:1.0.0-5.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686"
},
"product_reference": "libwebp-devel-0:1.0.0-5.el8.i686",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0:1.0.0-5.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le"
},
"product_reference": "libwebp-devel-0:1.0.0-5.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0:1.0.0-5.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x"
},
"product_reference": "libwebp-devel-0:1.0.0-5.el8.s390x",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-devel-0:1.0.0-5.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64"
},
"product_reference": "libwebp-devel-0:1.0.0-5.el8.x86_64",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64"
},
"product_reference": "libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-java-debuginfo-0:1.0.0-5.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686"
},
"product_reference": "libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le"
},
"product_reference": "libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-java-debuginfo-0:1.0.0-5.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x"
},
"product_reference": "libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64"
},
"product_reference": "libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64"
},
"product_reference": "libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-tools-debuginfo-0:1.0.0-5.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686"
},
"product_reference": "libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le"
},
"product_reference": "libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x"
},
"product_reference": "libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"relates_to_product_reference": "AppStream-8.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
},
"product_reference": "libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64",
"relates_to_product_reference": "AppStream-8.5.0.GA"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-25009",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2021-03-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1956917"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libwebp. An out-of-bounds read was found in function WebPMuxCreateInternal. The highest threat from this vulnerability is to data confidentiality and to the service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libwebp: out-of-bounds read in WebPMuxCreateInternal",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of Firefox and Thunderbird as shipped with Red Hat Enterprise Linux 7, and 8 as they embed the fixed version of libwebp.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-25009"
},
{
"category": "external",
"summary": "RHBZ#1956917",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956917"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-25009",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25009"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-25009",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-25009"
}
],
"release_date": "2018-08-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-11-09T18:44:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:4231"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libwebp: out-of-bounds read in WebPMuxCreateInternal"
},
{
"cve": "CVE-2018-25010",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2021-03-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1956918"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libwebp. An out-of-bounds read was found in function ApplyFilter. The highest threat from this vulnerability is to data confidentiality and to the service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libwebp: out-of-bounds read in ApplyFilter()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of Firefox and Thunderbird as shipped with Red Hat Enterprise Linux 7, and 8 as they embed the fixed version of libwebp.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-25010"
},
{
"category": "external",
"summary": "RHBZ#1956918",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956918"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-25010",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25010"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-25010",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-25010"
}
],
"release_date": "2018-07-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-11-09T18:44:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:4231"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libwebp: out-of-bounds read in ApplyFilter()"
},
{
"cve": "CVE-2018-25012",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2021-03-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1956922"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libwebp. An out-of-bounds read was found in function WebPMuxCreateInternal. The highest threat from this vulnerability is to data confidentiality and to the service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libwebp: out-of-bounds read in WebPMuxCreateInternal()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of Firefox and Thunderbird as shipped with Red Hat Enterprise Linux 7, and 8 as they embed the fixed version of libwebp.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-25012"
},
{
"category": "external",
"summary": "RHBZ#1956922",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956922"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-25012",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25012"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-25012",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-25012"
}
],
"release_date": "2018-08-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-11-09T18:44:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:4231"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libwebp: out-of-bounds read in WebPMuxCreateInternal()"
},
{
"cve": "CVE-2018-25013",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2021-03-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1956926"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libwebp. An out-of-bounds read was found in function ShiftBytes. The highest threat from this vulnerability is to data confidentiality and to the service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libwebp: out-of-bounds read in ShiftBytes()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of Firefox and Thunderbird as shipped with Red Hat Enterprise Linux 7, and 8 as they embed the fixed version of libwebp.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-25013"
},
{
"category": "external",
"summary": "RHBZ#1956926",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956926"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-25013",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25013"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-25013",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-25013"
}
],
"release_date": "2018-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-11-09T18:44:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:4231"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libwebp: out-of-bounds read in ShiftBytes()"
},
{
"cve": "CVE-2018-25014",
"cwe": {
"id": "CWE-908",
"name": "Use of Uninitialized Resource"
},
"discovery_date": "2021-03-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1956927"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libwebp. An unitialized variable is used in function ReadSymbol. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libwebp: use of uninitialized value in ReadSymbol()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of Firefox and Thunderbird as shipped with Red Hat Enterprise Linux 7 and 8 as they embed the fixed version of libwebp.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-25014"
},
{
"category": "external",
"summary": "RHBZ#1956927",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956927"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-25014",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25014"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-25014",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-25014"
}
],
"release_date": "2018-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-11-09T18:44:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:4231"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libwebp: use of uninitialized value in ReadSymbol()"
},
{
"cve": "CVE-2020-36330",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2021-03-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1956853"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libwebp. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libwebp: out-of-bounds read in ChunkVerifyAndAssign() in mux/muxread.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of Firefox and Thunderbird as shipped with Red Hat Enterprise Linux 7, and 8 as they embed the fixed version of libwebp.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-36330"
},
{
"category": "external",
"summary": "RHBZ#1956853",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956853"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-36330",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36330"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-36330",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-36330"
}
],
"release_date": "2020-02-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-11-09T18:44:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:4231"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libwebp: out-of-bounds read in ChunkVerifyAndAssign() in mux/muxread.c"
},
{
"cve": "CVE-2020-36331",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2021-03-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1956856"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libwebp. An out-of-bounds read was found in function ChunkAssignData. The highest threat from this vulnerability is to data confidentiality and to the service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libwebp: out-of-bounds read in ChunkAssignData() in mux/muxinternal.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of Firefox and Thunderbird as shipped with Red Hat Enterprise Linux 7, and 8 as they embed the fixed version of libwebp.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-36331"
},
{
"category": "external",
"summary": "RHBZ#1956856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-36331",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36331"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-36331",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-36331"
}
],
"release_date": "2021-02-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-11-09T18:44:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:4231"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libwebp: out-of-bounds read in ChunkAssignData() in mux/muxinternal.c"
},
{
"cve": "CVE-2020-36332",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2021-03-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1956868"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libwebp. When reading a file libwebp allocates an excessive amount of memory. The highest threat from this vulnerability is to the service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libwebp: excessive memory allocation when reading a file",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of Firefox and Thunderbird as shipped with Red Hat Enterprise Linux 7, and 8 as they embed the fixed version of libwebp.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-36332"
},
{
"category": "external",
"summary": "RHBZ#1956868",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956868"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-36332",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36332"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-36332",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-36332"
}
],
"release_date": "2020-02-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-11-09T18:44:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:4231"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.src",
"AppStream-8.5.0.GA:libwebp-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-debugsource-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-devel-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-java-debuginfo-0:1.0.0-5.el8.x86_64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.aarch64",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.i686",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.ppc64le",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.s390x",
"AppStream-8.5.0.GA:libwebp-tools-debuginfo-0:1.0.0-5.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libwebp: excessive memory allocation when reading a file"
}
]
}
WID-SEC-W-2023-1123
Vulnerability from csaf_certbund - Published: 2021-11-09 23:00 - Updated: 2023-05-23 22:00Summary
Red Hat Enterprise Linux (libwebp): Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.
Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat Enterprise Linux libwebp ausnutzen, um Informationen offenzulegen, einen Denial of Service zu verursachen oder Sicherheitsvorkehrungen zu umgehen.
Betroffene Betriebssysteme: - Linux
In der libwebp Komponente in Red Hat Enterprise Linux existieren mehrere Schwachstellen. Diese basieren auf "out-of-bounds-read" Fehlern und einer uninitialierten Variablen in der "ReadSymbol" Funktion. Ein entfernter anonymer Angreifer kann diese Schwachstellen ausnutzen, um Informationen offenzulegen, einen Denial of Service zu verursachen oder Sicherheitsvorkehrungen zu umgehen.
In der libwebp Komponente in Red Hat Enterprise Linux existieren mehrere Schwachstellen. Diese basieren auf "out-of-bounds-read" Fehlern und einer uninitialierten Variablen in der "ReadSymbol" Funktion. Ein entfernter anonymer Angreifer kann diese Schwachstellen ausnutzen, um Informationen offenzulegen, einen Denial of Service zu verursachen oder Sicherheitsvorkehrungen zu umgehen.
In der libwebp Komponente in Red Hat Enterprise Linux existieren mehrere Schwachstellen. Diese basieren auf "out-of-bounds-read" Fehlern und einer uninitialierten Variablen in der "ReadSymbol" Funktion. Ein entfernter anonymer Angreifer kann diese Schwachstellen ausnutzen, um Informationen offenzulegen, einen Denial of Service zu verursachen oder Sicherheitsvorkehrungen zu umgehen.
In der libwebp Komponente in Red Hat Enterprise Linux existieren mehrere Schwachstellen. Diese basieren auf "out-of-bounds-read" Fehlern und einer uninitialierten Variablen in der "ReadSymbol" Funktion. Ein entfernter anonymer Angreifer kann diese Schwachstellen ausnutzen, um Informationen offenzulegen, einen Denial of Service zu verursachen oder Sicherheitsvorkehrungen zu umgehen.
In der libwebp Komponente in Red Hat Enterprise Linux existieren mehrere Schwachstellen. Diese basieren auf "out-of-bounds-read" Fehlern und einer uninitialierten Variablen in der "ReadSymbol" Funktion. Ein entfernter anonymer Angreifer kann diese Schwachstellen ausnutzen, um Informationen offenzulegen, einen Denial of Service zu verursachen oder Sicherheitsvorkehrungen zu umgehen.
In der libwebp Komponente in Red Hat Enterprise Linux existieren mehrere Schwachstellen. Diese basieren auf "out-of-bounds-read" Fehlern und einer uninitialierten Variablen in der "ReadSymbol" Funktion. Ein entfernter anonymer Angreifer kann diese Schwachstellen ausnutzen, um Informationen offenzulegen, einen Denial of Service zu verursachen oder Sicherheitsvorkehrungen zu umgehen.
In der libwebp Komponente in Red Hat Enterprise Linux existieren mehrere Schwachstellen. Diese basieren auf "out-of-bounds-read" Fehlern und einer uninitialierten Variablen in der "ReadSymbol" Funktion. Ein entfernter anonymer Angreifer kann diese Schwachstellen ausnutzen, um Informationen offenzulegen, einen Denial of Service zu verursachen oder Sicherheitsvorkehrungen zu umgehen.
In der libwebp Komponente in Red Hat Enterprise Linux existieren mehrere Schwachstellen. Diese basieren auf "out-of-bounds-read" Fehlern und einer uninitialierten Variablen in der "ReadSymbol" Funktion. Ein entfernter anonymer Angreifer kann diese Schwachstellen ausnutzen, um Informationen offenzulegen, einen Denial of Service zu verursachen oder Sicherheitsvorkehrungen zu umgehen.
References
| URL | Category | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat Enterprise Linux (RHEL) ist eine popul\u00e4re Linux-Distribution.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat Enterprise Linux libwebp ausnutzen, um Informationen offenzulegen, einen Denial of Service zu verursachen oder Sicherheitsvorkehrungen zu umgehen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2023-1123 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2023-1123.json"
},
{
"category": "self",
"summary": "WID-SEC-2023-1123 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1123"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2023-1748 vom 2023-05-24",
"url": "https://alas.aws.amazon.com/ALAS-2023-1748.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2023-2048 vom 2023-05-17",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2048.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2023-2031 vom 2023-05-03",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2031.html"
},
{
"category": "external",
"summary": "RedHat Security Advisory vom 2021-11-09",
"url": "https://access.redhat.com/errata/RHSA-2021:4231"
}
],
"source_lang": "en-US",
"title": "Red Hat Enterprise Linux (libwebp): Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2023-05-23T22:00:00.000+00:00",
"generator": {
"date": "2024-08-15T17:50:14.746+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2023-1123",
"initial_release_date": "2021-11-09T23:00:00.000+00:00",
"revision_history": [
{
"date": "2021-11-09T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2023-05-02T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2023-05-16T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2023-05-23T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Amazon aufgenommen"
}
],
"status": "final",
"version": "4"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-25009",
"notes": [
{
"category": "description",
"text": "In der libwebp Komponente in Red Hat Enterprise Linux existieren mehrere Schwachstellen. Diese basieren auf \"out-of-bounds-read\" Fehlern und einer uninitialierten Variablen in der \"ReadSymbol\" Funktion. Ein entfernter anonymer Angreifer kann diese Schwachstellen ausnutzen, um Informationen offenzulegen, einen Denial of Service zu verursachen oder Sicherheitsvorkehrungen zu umgehen."
}
],
"product_status": {
"known_affected": [
"67646",
"398363"
]
},
"release_date": "2021-11-09T23:00:00.000+00:00",
"title": "CVE-2018-25009"
},
{
"cve": "CVE-2018-25010",
"notes": [
{
"category": "description",
"text": "In der libwebp Komponente in Red Hat Enterprise Linux existieren mehrere Schwachstellen. Diese basieren auf \"out-of-bounds-read\" Fehlern und einer uninitialierten Variablen in der \"ReadSymbol\" Funktion. Ein entfernter anonymer Angreifer kann diese Schwachstellen ausnutzen, um Informationen offenzulegen, einen Denial of Service zu verursachen oder Sicherheitsvorkehrungen zu umgehen."
}
],
"product_status": {
"known_affected": [
"67646",
"398363"
]
},
"release_date": "2021-11-09T23:00:00.000+00:00",
"title": "CVE-2018-25010"
},
{
"cve": "CVE-2018-25012",
"notes": [
{
"category": "description",
"text": "In der libwebp Komponente in Red Hat Enterprise Linux existieren mehrere Schwachstellen. Diese basieren auf \"out-of-bounds-read\" Fehlern und einer uninitialierten Variablen in der \"ReadSymbol\" Funktion. Ein entfernter anonymer Angreifer kann diese Schwachstellen ausnutzen, um Informationen offenzulegen, einen Denial of Service zu verursachen oder Sicherheitsvorkehrungen zu umgehen."
}
],
"product_status": {
"known_affected": [
"67646",
"398363"
]
},
"release_date": "2021-11-09T23:00:00.000+00:00",
"title": "CVE-2018-25012"
},
{
"cve": "CVE-2018-25013",
"notes": [
{
"category": "description",
"text": "In der libwebp Komponente in Red Hat Enterprise Linux existieren mehrere Schwachstellen. Diese basieren auf \"out-of-bounds-read\" Fehlern und einer uninitialierten Variablen in der \"ReadSymbol\" Funktion. Ein entfernter anonymer Angreifer kann diese Schwachstellen ausnutzen, um Informationen offenzulegen, einen Denial of Service zu verursachen oder Sicherheitsvorkehrungen zu umgehen."
}
],
"product_status": {
"known_affected": [
"67646",
"398363"
]
},
"release_date": "2021-11-09T23:00:00.000+00:00",
"title": "CVE-2018-25013"
},
{
"cve": "CVE-2018-25014",
"notes": [
{
"category": "description",
"text": "In der libwebp Komponente in Red Hat Enterprise Linux existieren mehrere Schwachstellen. Diese basieren auf \"out-of-bounds-read\" Fehlern und einer uninitialierten Variablen in der \"ReadSymbol\" Funktion. Ein entfernter anonymer Angreifer kann diese Schwachstellen ausnutzen, um Informationen offenzulegen, einen Denial of Service zu verursachen oder Sicherheitsvorkehrungen zu umgehen."
}
],
"product_status": {
"known_affected": [
"67646",
"398363"
]
},
"release_date": "2021-11-09T23:00:00.000+00:00",
"title": "CVE-2018-25014"
},
{
"cve": "CVE-2020-36330",
"notes": [
{
"category": "description",
"text": "In der libwebp Komponente in Red Hat Enterprise Linux existieren mehrere Schwachstellen. Diese basieren auf \"out-of-bounds-read\" Fehlern und einer uninitialierten Variablen in der \"ReadSymbol\" Funktion. Ein entfernter anonymer Angreifer kann diese Schwachstellen ausnutzen, um Informationen offenzulegen, einen Denial of Service zu verursachen oder Sicherheitsvorkehrungen zu umgehen."
}
],
"product_status": {
"known_affected": [
"67646",
"398363"
]
},
"release_date": "2021-11-09T23:00:00.000+00:00",
"title": "CVE-2020-36330"
},
{
"cve": "CVE-2020-36331",
"notes": [
{
"category": "description",
"text": "In der libwebp Komponente in Red Hat Enterprise Linux existieren mehrere Schwachstellen. Diese basieren auf \"out-of-bounds-read\" Fehlern und einer uninitialierten Variablen in der \"ReadSymbol\" Funktion. Ein entfernter anonymer Angreifer kann diese Schwachstellen ausnutzen, um Informationen offenzulegen, einen Denial of Service zu verursachen oder Sicherheitsvorkehrungen zu umgehen."
}
],
"product_status": {
"known_affected": [
"67646",
"398363"
]
},
"release_date": "2021-11-09T23:00:00.000+00:00",
"title": "CVE-2020-36331"
},
{
"cve": "CVE-2020-36332",
"notes": [
{
"category": "description",
"text": "In der libwebp Komponente in Red Hat Enterprise Linux existieren mehrere Schwachstellen. Diese basieren auf \"out-of-bounds-read\" Fehlern und einer uninitialierten Variablen in der \"ReadSymbol\" Funktion. Ein entfernter anonymer Angreifer kann diese Schwachstellen ausnutzen, um Informationen offenzulegen, einen Denial of Service zu verursachen oder Sicherheitsvorkehrungen zu umgehen."
}
],
"product_status": {
"known_affected": [
"67646",
"398363"
]
},
"release_date": "2021-11-09T23:00:00.000+00:00",
"title": "CVE-2020-36332"
}
]
}
alsa-2021:4231
Vulnerability from osv_almalinux
Published
2021-11-09 08:47
Modified
2021-11-12 10:20
Summary
Moderate: libwebp security update
Details
The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format (RIFF). Webmasters, web developers and browser developers can use WebP to compress, archive, and distribute digital images more efficiently.
Security Fix(es):
-
libwebp: out-of-bounds read in WebPMuxCreateInternal (CVE-2018-25009)
-
libwebp: out-of-bounds read in ApplyFilter() (CVE-2018-25010)
-
libwebp: out-of-bounds read in WebPMuxCreateInternal() (CVE-2018-25012)
-
libwebp: out-of-bounds read in ShiftBytes() (CVE-2018-25013)
-
libwebp: use of uninitialized value in ReadSymbol() (CVE-2018-25014)
-
libwebp: out-of-bounds read in ChunkVerifyAndAssign() in mux/muxread.c (CVE-2020-36330)
-
libwebp: out-of-bounds read in ChunkAssignData() in mux/muxinternal.c (CVE-2020-36331)
-
libwebp: excessive memory allocation when reading a file (CVE-2020-36332)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References
| URL | Type | ||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||
{
"affected": [
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "libwebp"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.0.0-5.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "libwebp-devel"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.0.0-5.el8"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"details": "The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format (RIFF). Webmasters, web developers and browser developers can use WebP to compress, archive, and distribute digital images more efficiently.\n\nSecurity Fix(es):\n\n* libwebp: out-of-bounds read in WebPMuxCreateInternal (CVE-2018-25009)\n\n* libwebp: out-of-bounds read in ApplyFilter() (CVE-2018-25010)\n\n* libwebp: out-of-bounds read in WebPMuxCreateInternal() (CVE-2018-25012)\n\n* libwebp: out-of-bounds read in ShiftBytes() (CVE-2018-25013)\n\n* libwebp: use of uninitialized value in ReadSymbol() (CVE-2018-25014)\n\n* libwebp: out-of-bounds read in ChunkVerifyAndAssign() in mux/muxread.c (CVE-2020-36330)\n\n* libwebp: out-of-bounds read in ChunkAssignData() in mux/muxinternal.c (CVE-2020-36331)\n\n* libwebp: excessive memory allocation when reading a file (CVE-2020-36332)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.",
"id": "ALSA-2021:4231",
"modified": "2021-11-12T10:20:56Z",
"published": "2021-11-09T08:47:24Z",
"references": [
{
"type": "ADVISORY",
"url": "https://errata.almalinux.org/8/ALSA-2021-4231.html"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2018-25009"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2018-25010"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2018-25012"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2018-25013"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2018-25014"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2020-36330"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2020-36331"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2020-36332"
}
],
"related": [
"CVE-2018-25009",
"CVE-2018-25010",
"CVE-2018-25012",
"CVE-2018-25013",
"CVE-2018-25014",
"CVE-2020-36330",
"CVE-2020-36331",
"CVE-2020-36332"
],
"summary": "Moderate: libwebp security update"
}
GSD-2020-36330
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2020-36330",
"description": "A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.",
"id": "GSD-2020-36330",
"references": [
"https://www.suse.com/security/cve/CVE-2020-36330.html",
"https://www.debian.org/security/2021/dsa-4930",
"https://access.redhat.com/errata/RHSA-2021:4231",
"https://ubuntu.com/security/CVE-2020-36330",
"https://linux.oracle.com/cve/CVE-2020-36330.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2020-36330"
],
"details": "A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.",
"id": "GSD-2020-36330",
"modified": "2023-12-13T01:21:55.524871Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2020-36330",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "libwebp",
"version": {
"version_data": [
{
"version_value": "libwebp 1.0.1"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-125"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1956853",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956853"
},
{
"name": "[debian-lts-announce] 20210605 [SECURITY] [DLA 2672-1] libwebp security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00005.html"
},
{
"name": "[debian-lts-announce] 20210606 [SECURITY] [DLA 2677-1] libwebp security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00006.html"
},
{
"name": "DSA-4930",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2021/dsa-4930"
},
{
"name": "https://support.apple.com/kb/HT212601",
"refsource": "CONFIRM",
"url": "https://support.apple.com/kb/HT212601"
},
{
"name": "20210723 APPLE-SA-2021-07-21-1 iOS 14.7 and iPadOS 14.7",
"refsource": "FULLDISC",
"url": "http://seclists.org/fulldisclosure/2021/Jul/54"
},
{
"name": "https://security.netapp.com/advisory/ntap-20211104-0004/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20211104-0004/"
}
]
}
},
"gitlab.com": {
"advisories": [
{
"affected_range": "\u003c1.0.1",
"affected_versions": "All versions before 1.0.1",
"cvss_v2": "AV:N/AC:L/Au:N/C:P/I:N/A:P",
"cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"cwe_ids": [
"CWE-1035",
"CWE-125",
"CWE-937"
],
"date": "2021-11-30",
"description": "An out-of-bounds read was found in function `ChunkVerifyAndAssign`. The highest threat from this vulnerability is to data confidentiality and to the service availability.",
"fixed_versions": [
"1.0.3"
],
"identifier": "CVE-2020-36330",
"identifiers": [
"CVE-2020-36330"
],
"not_impacted": "All versions starting from 1.0.1",
"package_slug": "conan/libwebp",
"pubdate": "2021-05-21",
"solution": "Upgrade to version 1.0.3 or above.",
"title": "Out-of-bounds Read",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2020-36330",
"https://bugzilla.redhat.com/show_bug.cgi?id=1956853"
],
"uuid": "908f2c8a-d5a3-4fc4-b5b4-d40720af824b"
}
]
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:webmproject:libwebp:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "1.0.1",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "14.7",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "14.7",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2020-36330"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-125"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1956853",
"refsource": "MISC",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956853"
},
{
"name": "[debian-lts-announce] 20210605 [SECURITY] [DLA 2672-1] libwebp security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00005.html"
},
{
"name": "[debian-lts-announce] 20210606 [SECURITY] [DLA 2677-1] libwebp security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00006.html"
},
{
"name": "DSA-4930",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2021/dsa-4930"
},
{
"name": "https://support.apple.com/kb/HT212601",
"refsource": "CONFIRM",
"tags": [
"Not Applicable"
],
"url": "https://support.apple.com/kb/HT212601"
},
{
"name": "20210723 APPLE-SA-2021-07-21-1 iOS 14.7 and iPadOS 14.7",
"refsource": "FULLDISC",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://seclists.org/fulldisclosure/2021/Jul/54"
},
{
"name": "https://security.netapp.com/advisory/ntap-20211104-0004/",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20211104-0004/"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.4,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 4.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.2
}
},
"lastModifiedDate": "2021-11-30T19:43Z",
"publishedDate": "2021-05-21T17:15Z"
}
}
}
FKIE_CVE-2020-36330
Vulnerability from fkie_nvd - Published: 2021-05-21 17:15 - Updated: 2024-11-21 05:29
Severity ?
Summary
A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.
References
| URL | Tags | ||
|---|---|---|---|
| secalert@redhat.com | http://seclists.org/fulldisclosure/2021/Jul/54 | Mailing List, Third Party Advisory | |
| secalert@redhat.com | https://bugzilla.redhat.com/show_bug.cgi?id=1956853 | Issue Tracking, Patch, Third Party Advisory | |
| secalert@redhat.com | https://lists.debian.org/debian-lts-announce/2021/06/msg00005.html | Mailing List, Third Party Advisory | |
| secalert@redhat.com | https://lists.debian.org/debian-lts-announce/2021/06/msg00006.html | Mailing List, Third Party Advisory | |
| secalert@redhat.com | https://security.netapp.com/advisory/ntap-20211104-0004/ | Third Party Advisory | |
| secalert@redhat.com | https://support.apple.com/kb/HT212601 | Not Applicable | |
| secalert@redhat.com | https://www.debian.org/security/2021/dsa-4930 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://seclists.org/fulldisclosure/2021/Jul/54 | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=1956853 | Issue Tracking, Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.debian.org/debian-lts-announce/2021/06/msg00005.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.debian.org/debian-lts-announce/2021/06/msg00006.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://security.netapp.com/advisory/ntap-20211104-0004/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://support.apple.com/kb/HT212601 | Not Applicable | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.debian.org/security/2021/dsa-4930 | Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| webmproject | libwebp | * | |
| debian | debian_linux | 9.0 | |
| debian | debian_linux | 10.0 | |
| redhat | enterprise_linux | 8.0 | |
| netapp | ontap_select_deploy_administration_utility | - | |
| apple | ipados | * | |
| apple | iphone_os | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:webmproject:libwebp:*:*:*:*:*:*:*:*",
"matchCriteriaId": "97062C06-0227-489B-8E3C-B62050B69C41",
"versionEndExcluding": "1.0.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E7CF3019-975D-40BB-A8A4-894E62BD3797",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3B5771AF-0A7B-4CB9-85C1-AE624498D080",
"versionEndExcluding": "14.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D3AF02B7-BF1F-483A-BA47-9B5B92AF1D29",
"versionEndExcluding": "14.7",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability."
},
{
"lang": "es",
"value": "Se encontr\u00f3 un fallo en libwebp en versiones anteriores a 1.0.1.\u0026#xa0;Se encontr\u00f3 una lectura fuera de l\u00edmites en la funci\u00f3n ChunkVerifyAndAssign.\u0026#xa0;La mayor amenaza de esta vulnerabilidad es la confidencialidad de los datos y la disponibilidad del servicio"
}
],
"id": "CVE-2020-36330",
"lastModified": "2024-11-21T05:29:18.130",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.4,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 4.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.2,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2021-05-21T17:15:08.353",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://seclists.org/fulldisclosure/2021/Jul/54"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956853"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00005.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00006.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20211104-0004/"
},
{
"source": "secalert@redhat.com",
"tags": [
"Not Applicable"
],
"url": "https://support.apple.com/kb/HT212601"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2021/dsa-4930"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://seclists.org/fulldisclosure/2021/Jul/54"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956853"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00005.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00006.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20211104-0004/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Not Applicable"
],
"url": "https://support.apple.com/kb/HT212601"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2021/dsa-4930"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-125"
}
],
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-125"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
CERTFR-2021-AVI-562
Vulnerability from certfr_avis - Published: 2021-07-22 - Updated: 2021-07-22
De multiples vulnérabilités ont été découvertes dans les produits Apple. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "iPadOS versions ant\u00e9rieures \u00e0 14.7",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Catalina versions ant\u00e9rieures \u00e0 2021-004",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iOS versions ant\u00e9rieures \u00e0 14.7",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Big Sur versions ant\u00e9rieures \u00e0 11.5",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Mojave versions ant\u00e9rieures \u00e0 2021-005",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2021-30784",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30784"
},
{
"name": "CVE-2021-30799",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30799"
},
{
"name": "CVE-2021-30672",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30672"
},
{
"name": "CVE-2021-30765",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30765"
},
{
"name": "CVE-2021-30731",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30731"
},
{
"name": "CVE-2021-30792",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30792"
},
{
"name": "CVE-2018-25014",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25014"
},
{
"name": "CVE-2021-30787",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30787"
},
{
"name": "CVE-2021-30782",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30782"
},
{
"name": "CVE-2021-30800",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30800"
},
{
"name": "CVE-2021-30733",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30733"
},
{
"name": "CVE-2021-30766",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30766"
},
{
"name": "CVE-2018-25011",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25011"
},
{
"name": "CVE-2021-30774",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30774"
},
{
"name": "CVE-2021-30778",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30778"
},
{
"name": "CVE-2021-30763",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30763"
},
{
"name": "CVE-2021-30776",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30776"
},
{
"name": "CVE-2021-30677",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30677"
},
{
"name": "CVE-2021-30775",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30775"
},
{
"name": "CVE-2021-30789",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30789"
},
{
"name": "CVE-2021-30759",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30759"
},
{
"name": "CVE-2018-25010",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25010"
},
{
"name": "CVE-2021-30748",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30748"
},
{
"name": "CVE-2021-30796",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30796"
},
{
"name": "CVE-2021-30791",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30791"
},
{
"name": "CVE-2021-30770",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30770"
},
{
"name": "CVE-2021-30797",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30797"
},
{
"name": "CVE-2021-30788",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30788"
},
{
"name": "CVE-2021-30790",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30790"
},
{
"name": "CVE-2021-30703",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30703"
},
{
"name": "CVE-2021-30772",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30772"
},
{
"name": "CVE-2021-30781",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30781"
},
{
"name": "CVE-2021-30773",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30773"
},
{
"name": "CVE-2020-36328",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36328"
},
{
"name": "CVE-2021-30758",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30758"
},
{
"name": "CVE-2021-30803",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30803"
},
{
"name": "CVE-2021-30798",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30798"
},
{
"name": "CVE-2021-30769",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30769"
},
{
"name": "CVE-2021-30760",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30760"
},
{
"name": "CVE-2021-30785",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30785"
},
{
"name": "CVE-2021-30780",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30780"
},
{
"name": "CVE-2020-36330",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36330"
},
{
"name": "CVE-2021-30793",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30793"
},
{
"name": "CVE-2021-30779",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30779"
},
{
"name": "CVE-2021-30805",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30805"
},
{
"name": "CVE-2021-30786",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30786"
},
{
"name": "CVE-2020-36329",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36329"
},
{
"name": "CVE-2021-30804",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30804"
},
{
"name": "CVE-2021-30795",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30795"
},
{
"name": "CVE-2021-30777",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30777"
},
{
"name": "CVE-2020-36331",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36331"
},
{
"name": "CVE-2021-30768",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30768"
},
{
"name": "CVE-2021-30802",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30802"
},
{
"name": "CVE-2021-3518",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3518"
},
{
"name": "CVE-2021-30783",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30783"
}
],
"initial_release_date": "2021-07-22T00:00:00",
"last_revision_date": "2021-07-22T00:00:00",
"links": [],
"reference": "CERTFR-2021-AVI-562",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2021-07-22T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Apple.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service et un\ncontournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Apple",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212601 du 21 juillet 2021",
"url": "https://support.apple.com/en-us/HT212601"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212600 du 21 juillet 2021",
"url": "https://support.apple.com/en-us/HT212600"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212602 du 21 juillet 2021",
"url": "https://support.apple.com/en-us/HT212602"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212603 du 21 juillet 2021",
"url": "https://support.apple.com/en-us/HT212603"
}
]
}
MSRC_CVE-2020-36330
Vulnerability from csaf_microsoft - Published: 2021-05-02 00:00 - Updated: 2021-05-25 00:00Summary
A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.
Notes
Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
9.1 (Critical)
Vendor Fix
1.0.3-1:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade
https://learn.microsoft.com/en-us/azure/azure-lin…
References
| URL | Category | |
|---|---|---|
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2020-36330 A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability. - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2021/msrc_cve-2020-36330.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.",
"tracking": {
"current_release_date": "2021-05-25T00:00:00.000Z",
"generator": {
"date": "2025-12-27T18:53:44.504Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2020-36330",
"initial_release_date": "2021-05-02T00:00:00.000Z",
"revision_history": [
{
"date": "2021-05-25T00:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "1.0",
"product": {
"name": "CBL Mariner 1.0",
"product_id": "16820"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003ccm1 libwebp 1.0.3-1",
"product": {
"name": "\u003ccm1 libwebp 1.0.3-1",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "cm1 libwebp 1.0.3-1",
"product": {
"name": "cm1 libwebp 1.0.3-1",
"product_id": "16967"
}
}
],
"category": "product_name",
"name": "libwebp"
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccm1 libwebp 1.0.3-1 as a component of CBL Mariner 1.0",
"product_id": "16820-1"
},
"product_reference": "1",
"relates_to_product_reference": "16820"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cm1 libwebp 1.0.3-1 as a component of CBL Mariner 1.0",
"product_id": "16967-16820"
},
"product_reference": "16967",
"relates_to_product_reference": "16820"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-36330",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "general",
"text": "redhat",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"16967-16820"
],
"known_affected": [
"16820-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2020-36330 A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability. - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2021/msrc_cve-2020-36330.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-25T00:00:00.000Z",
"details": "1.0.3-1:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"16820-1"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalsScore": 0.0,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.1,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"16820-1"
]
}
],
"title": "A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability."
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…