Versions mentioned in the description apply to the upstream
Remediation section below for
Debian:10 relevant versions.
A flaw was found in libwebp in versions before 1.0.1. An unitialized variable is used in function ReadSymbol. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
libwebp to version 0.6.1-2+deb10u1 or higher.