libvpx security update

🗓️ 08 Jul 2025 00:00:00Reported by OracleLinuxType

oraclelinux

oraclelinux🔗 linux.oracle.com👁 2 Views

Security update for libvpx addressing CVE-2025-5283 to fix double free on initialization failure

Reporter	Title	Published	Views	Family All 499
FreeBSD	chromium -- multiple security fixes	27 May 202500:00	–	freebsd
FreeBSD	qt6-webengine -- Multiple vulnerabilities	27 May 202500:00	–	freebsd
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM includes components with known vulnerabilities	15 Jul 202515:21	–	ibm
Tenable Nessus	Amazon Linux 2023 : libvpx, libvpx-devel, libvpx-utils (ALAS2023-2025-1023)	23 Jun 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : thunderbird (ALAS-2025-2873)	12 Jun 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : libvpx (ALAS-2025-2897)	25 Jun 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : firefox (ALASFIREFOX-2025-039)	11 Jun 202500:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0094: libvpx (ALINUX3-SA-2025:0094)	25 Jun 202500:00	–	nessus
Tenable Nessus	AlmaLinux 10 : firefox (ALSA-2025:8341)	9 Oct 202500:00	–	nessus
Tenable Nessus	AlmaLinux 9 : thunderbird (ALSA-2025:8607)	3 Jul 202500:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
oracle linux	7	src	libvpx	1.3.0-8.0.1.el7	libvpx-1.3.0-8.0.1.el7.src.rpm
oracle linux	7	i686	libvpx	1.3.0-8.0.1.el7	libvpx-1.3.0-8.0.1.el7.i686.rpm
oracle linux	7	x86_64	libvpx	1.3.0-8.0.1.el7	libvpx-1.3.0-8.0.1.el7.x86_64.rpm
oracle linux	7	i686	libvpx-devel	1.3.0-8.0.1.el7	libvpx-devel-1.3.0-8.0.1.el7.i686.rpm
oracle linux	7	x86_64	libvpx-devel	1.3.0-8.0.1.el7	libvpx-devel-1.3.0-8.0.1.el7.x86_64.rpm
oracle linux	7	x86_64	libvpx-utils	1.3.0-8.0.1.el7	libvpx-utils-1.3.0-8.0.1.el7.x86_64.rpm

08 Jul 2025 00:00Current

7.4High risk

Vulners AI Score7.4

CVSS 3.15.4

EPSS0.00273

SSVC

libvpx security update cve-2025-5283 double free fix initialization failure