5 matches found
Astra Linux – Vulnerability in libvpx
There is a heap overflow vulnerability in libvpx. Encoding a frame with dimensions larger than the originally configured size using VP9 may lead to a heap overflow in libvpx. We recommend upgrading to version 1.13.1 or higher...
GHSA-H6C8-CWW8-35HF OpenFGA has an Authorization Bypass through cached keys
Description In OpenFGA, under specific conditions, models using conditions with caching enabled can result in two different check requests producing the same cache key. This can result in OpenFGA reusing an earlier cached result for a different request. Am I Affected? Users are affected if the...
Medium: libvpx
Issue Overview: VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding. CVE-2023-44488 A heap overflow vulnerability exists in libvpx - Encoding a frame that has larger dimensions than the originally configured size with VP9 may result in a heap overflow in libvpx. ...
SUSE CVE-2023-6349
A heap overflow vulnerability exists in libvpx - Encoding a frame that has larger dimensions than the originally configured size with VP9 may result in a heap overflow in libvpx. We recommend upgrading to version 1.13.1 or above...
PT-2023-21235 · Cilium · Cilium
Name of the Vulnerable Software and Affected Versions: Cilium version 1.13.0 Description: Cilium is a networking, observability, and security solution with an eBPF-based dataplane. When Cilium is started, there is a short period when Cilium eBPF programs are not attached to the host. During this...