This update for libwebp fixes the following issues: - CVE-2018-25010: Fixed heap-based buffer overflow in ApplyFilter . - CVE-2020-36330: Fixed heap-based buffer overflow in ChunkVerifyAndAssign . - CVE-2020-36332: Fixed extreme memory allocation when reading a file . - CVE-2020-36329: Fixed use-after-free in EmitFancyRGB . - CVE-2018-25012: Fixed heap-based buffer overflow in GetLE24 . - CVE-2020-36328: Fixed heap-based buffer overflow in WebPDecode*Into functions . - CVE-2018-25013: Fixed heap-based buffer overflow in ShiftBytes . - CVE-2020-36331: Fixed heap-based buffer overflow in ChunkAssignData . - CVE-2018-25009: Fixed heap-based buffer overflow in GetLE16 . - CVE-2018-25011: Fixed fail on multiple image chunks .