CLSA-2025-1759154304
See a problem?- Import Source
- https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2025-1759154304.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CLSA-2025-1759154304
- Upstream
- Published
- 2025-09-29T13:58:28Z
- Modified
- 2026-05-27T11:18:21.024443938Z
- Summary
- libwebp: Fix of 3 CVEs
- Details
-
- CVE-2020-36329: fix use-after-free vulnerability by delaying thread termination
- CVE-2020-36330: fix out-of-bounds read in ChunkVerifyAndAssign function
- CVE-2020-36331: fix out-of-bounds read in ChunkAssignData function
- References
Affected packages
TuxCare:CentOS:6 / libwebp
Package
- Name
- libwebp
- Purl
- pkg:rpm/tuxcare/libwebp?distro=centos-6
TuxCare:CentOS:6 / libwebp-devel
Package
- Name
- libwebp-devel
- Purl
- pkg:rpm/tuxcare/libwebp-devel?distro=centos-6
TuxCare:CentOS:6 / libwebp-java
Package
- Name
- libwebp-java
- Purl
- pkg:rpm/tuxcare/libwebp-java?distro=centos-6