Amazon Linux 2023 : libwebp, libwebp-devel, libwebp-java (ALAS2023-2023-355)

high Nessus Plugin ID 182456

Version 1.3

Dec 12, 2024, 9:55 AM

  • CVSS metrics ("CVSSv2 score" set to 6.8)
  • CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P")
  • CVSS metrics ("CVSSv3 score" set to 8.8)
  • CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H")
  • CVSS metrics ("Cvssv4 score" set to 0.0)
  • CVSSv2 severity (based on CVE-2023-5129, severity decreased from "High" to "Medium")
  • CVSSv2 severity (based on None, severity decreased from "High" to "Low")
  • Detection (updated detection logic)
  • Plugin metadata

Plugin Feed: 202412120955

Version 1.2

Nov 8, 2023, 3:41 PM

  • CVSS metrics ("CVSSv3 score" set to 9.1. "CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N")

Plugin Feed: 202311081541

Version 1.1

Oct 4, 2023, 4:16 PM

  • CVSS metrics ("CVSSv2 score" changed from 6.8 to 7.5. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P" to "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P". "CVSSv3 score" changed from 8.8 to 9.8)
  • CVSSv2 severity (based on CVE-2023-5129, severity increased from "Medium" to "High")
  • CVSSv3 score source (set to "CVE-2023-5129")

Plugin Feed: 202310041616

Version 1.0

Oct 4, 2023, 4:00 AM

  • New

Plugin Feed: 202310040400

* Changelogs are generally available for changes made after Nov 1, 2022