[ALSA-2023:2076] Important: libwebp security update
Type:
security
Severity:
important
Release date:
2023-05-03
Description:
The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format (RIFF). Webmasters, web developers and browser developers can use WebP to compress, archive, and distribute digital images more efficiently. Security Fix(es): * Mozilla: libwebp: Double-free in libwebp (CVE-2023-1999) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
Architecture Package Checksum
aarch64 libwebp-1.0.0-8.el8_7.aarch64.rpm 32d4974df427327b37bfc9050ab1cbcbe643b9436068e77b55b0bf3eb27de405
aarch64 libwebp-devel-1.0.0-8.el8_7.aarch64.rpm c4964cf808cfd5e4570499de558a062e9842d98074568adfb179dbcfd80192f9
i686 libwebp-devel-1.0.0-8.el8_7.i686.rpm 0f51987e392ed5dc5ea5fec922cf2a568d4a1653d73385a828b8fa11d9d460c7
i686 libwebp-1.0.0-8.el8_7.i686.rpm c13f168eb4a898045c7876a5d233ae04452461f8971925f8a620dd515dafc5d1
ppc64le libwebp-1.0.0-8.el8_7.ppc64le.rpm bc57c39468803a82087488b11eeda390f84077ca95fe5ab346e40dcfbe2cbef9
ppc64le libwebp-devel-1.0.0-8.el8_7.ppc64le.rpm e6d12d40226e3cb5190f0fbb57e256bff94fbfc3d91bc17b004cdd82b6901631
s390x libwebp-devel-1.0.0-8.el8_7.s390x.rpm 2d74139588799de3854971e376bb595cbe0250147e6b1b0aed1f6e54967b60b4
s390x libwebp-1.0.0-8.el8_7.s390x.rpm a23566d5c5e6d29f3b9d5dcfeb03d6b7e46eee81109a7d5b35179780bdd50241
x86_64 libwebp-1.0.0-8.el8_7.x86_64.rpm 7e34819b2c6e169f5b4b87c4cc141a0f0d6ed61ce49fd33ea3c49062882a51c0
x86_64 libwebp-devel-1.0.0-8.el8_7.x86_64.rpm fa1eb37361bd7f98f5281480ee16bed57e160080b66916942b159512d098f1dc
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.