cwebp wrapper that makes it seamlessly available as a local dependency
Known vulnerabilities in the cwebp-bin package. This does not include vulnerabilities belonging to this package’s dependencies.Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Affected versions of this package are vulnerable to Heap-based Buffer Overflow when the
This is only exploitable if the
This vulnerability was also published on libwebp CVE-2023-5129
2023-09-12: Initial advisory publication
2023-09-27: Advisory details updated, including CVSS, references
2023-09-27: CVE-2023-5129 rejected as a duplicate of CVE-2023-4863
2023-09-28: Research and addition of additional affected libraries
How to fix Heap-based Buffer Overflow?
There is no fixed version for