CVE-2018-25009

CVE-2018-25009

EPSS 2.1%CWE-125

A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in GetLE16().

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=9100 https://bugzilla.redhat.com/show_bug.cgi?id=1956917 https://chromium.googlesource.com/webm/libwebp/+/95fd65070662e01cc9170c4444f5c0859a710097