Release Info

Advisory: CLSA-2023:1696970233

OS: CentOS 8.4 ELS

Public date: 2023-10-10 16:37:15

Project: libwebp

Version: 1.0.0-5.el8.tuxcare.els2

Errata link: https://errata.cloudlinux.com/centos8.4-els/CLSA-2023-1696970233.html

Changelog

- CVE-2018-25013, CVE-2018-25014: wait for all threads to be done in DecodeRemaining - CVE-2023-1999: fix a double free error

Update

Update command: dnf update libwebp*

Packages list

libwebp-1.0.0-5.el8.tuxcare.els2.i686.rpm libwebp-1.0.0-5.el8.tuxcare.els2.x86_64.rpm libwebp-devel-1.0.0-5.el8.tuxcare.els2.i686.rpm libwebp-devel-1.0.0-5.el8.tuxcare.els2.x86_64.rpm libwebp-java-1.0.0-5.el8.tuxcare.els2.x86_64.rpm libwebp-tools-1.0.0-5.el8.tuxcare.els2.x86_64.rpm

CVEs

CVE-2023-4863
CVE-2018-25014
CVE-2018-25013
CVE-2023-1999