Buffer Overflow vulnerability in WEBP_Support.cpp in exempi 2.5.0 and earlier allows remote attackers to cause a denial of service via opening of crafted webp file.
[ { "source": "https://gitlab.freedesktop.org/libopenraw/exempi@acee2894ceb91616543927c2a6e45050c60f98f7", "target": { "function": "VP8XChunk::VP8XChunk", "file": "XMPFiles/source/FormatSupport/WEBP_Support.cpp" }, "digest": { "function_hash": "287489629788518566746366652779894257635", "length": 506.0 }, "deprecated": false, "id": "CVE-2020-18652-40e223e3", "signature_version": "v1", "signature_type": "Function" }, { "source": "https://gitlab.freedesktop.org/libopenraw/exempi@acee2894ceb91616543927c2a6e45050c60f98f7", "target": { "file": "XMPFiles/source/FormatSupport/WEBP_Support.cpp" }, "digest": { "line_hashes": [ "19290389321265225874426330470930240808", "11227025886656892332355393183387779029", "46726694244881865389308129605577474543", "190687311370935777541703537973506947079", "2014808226921614575823072012764346177", "246110405176998061242691812275757246192" ], "threshold": 0.9 }, "deprecated": false, "id": "CVE-2020-18652-4be099bb", "signature_version": "v1", "signature_type": "Line" } ]