{"id":"RHSA-2021:4231","summary":"Red Hat Security Advisory: libwebp security update","modified":"2026-04-30T10:03:06Z","published":"2024-09-16T05:59:17Z","upstream":["CVE-2018-25009","CVE-2018-25010","CVE-2018-25012","CVE-2018-25013","CVE-2018-25014","CVE-2020-36330","CVE-2020-36331","CVE-2020-36332"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2021:4231"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.5_release_notes/"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1956853"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1956856"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1956868"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1956917"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1956918"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1956922"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1956926"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1956927"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_4231.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-25009"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-25009"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-25009"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-25010"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-25010"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-25010"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-25012"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-25012"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-25012"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-25013"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-25013"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-25013"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-25014"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-25014"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-25014"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-36330"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-36330"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-36330"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-36331"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-36331"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-36331"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-36332"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-36332"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-36332"}],"affected":[{"package":{"name":"libwebp","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/libwebp"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.0-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4231.json"}},{"package":{"name":"libwebp-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/libwebp-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.0-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4231.json"}},{"package":{"name":"libwebp-debugsource","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/libwebp-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.0-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4231.json"}},{"package":{"name":"libwebp-devel","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/libwebp-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.0-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4231.json"}},{"package":{"name":"libwebp-java-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/libwebp-java-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.0-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4231.json"}},{"package":{"name":"libwebp-tools-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/libwebp-tools-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.0-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4231.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}