libvpx -- buffer overflow in vp9_init_context_buffers

ID 6CA7EDDD-D436-486A-B169-B948436BCF14
Type freebsd
Reporter FreeBSD
Modified 2015-09-22T00:00:00


The Mozilla Project reports:

Security researcher Khalil Zhani reported that a maliciously crafted vp9 format video could be used to trigger a buffer overflow while parsing the file. This leads to a potentially exploitable crash due to a flaw in the libvpx library.