Buffer Overflow vulnerability in WEBP_Support.cpp in exempi 2.5.0 and earlier allows remote attackers to cause a denial of service via opening of crafted webp file.
{ "vanir_signatures": [ { "signature_type": "Function", "digest": { "length": 506.0, "function_hash": "287489629788518566746366652779894257635" }, "signature_version": "v1", "source": "https://gitlab.freedesktop.org/libopenraw/exempi@acee2894ceb91616543927c2a6e45050c60f98f7", "id": "CVE-2020-18652-40e223e3", "target": { "file": "XMPFiles/source/FormatSupport/WEBP_Support.cpp", "function": "VP8XChunk::VP8XChunk" }, "deprecated": false }, { "signature_type": "Line", "digest": { "line_hashes": [ "19290389321265225874426330470930240808", "11227025886656892332355393183387779029", "46726694244881865389308129605577474543", "190687311370935777541703537973506947079", "2014808226921614575823072012764346177", "246110405176998061242691812275757246192" ], "threshold": 0.9 }, "signature_version": "v1", "source": "https://gitlab.freedesktop.org/libopenraw/exempi@acee2894ceb91616543927c2a6e45050c60f98f7", "id": "CVE-2020-18652-4be099bb", "target": { "file": "XMPFiles/source/FormatSupport/WEBP_Support.cpp" }, "deprecated": false } ] }